FBSApplicationTestSpecIII

· Identify and escalate security vulnerabilities immediately, enabling quick decision‑making and faster mitigations. · Identify Critical/High‑severity issues such as Log4j, SQL Injection, XSS, and authentication bypass. And discuss immediately with Lead Architects and the FIS team, ensuring clear explanation, accurate impact assessment, and rapid resolution. · Identify zero‑day vulnerability —especially in platforms like Salesforce, Customer facing and Agent facing applications and work with architects and developers to rapidly apply mitigations. Reduces potential exploitation window to minimum. · Execute Security testing before every release and significantly decreases the possibility of high‑impact vulnerabilities slipping through. · Ensure continuous testing plus immediate cross‑team communication to drastically lower the chance of missing or delaying fixes for high-risk issues. o Validate functional scenarios with a security perspective to ensure secure workflow coverage. o Identify and report functional bugs encountered during security assessments. o Ensure that fixes applied by developers do not reintroduce or create new security risks. o Improve overall application stability, resilience, and quality through cross‑functional testing. · Help maintain compliance requirements, support audits, and ensure that security checkpoints are followed throughout the SDLC. · Provide continuous support during releases, change requests, and urgent production issues. · Perform comprehensive security testing for any Farmers application, including CSS, BW CSS, Farmers.com, ALTA etc. Ensure high focus on Customer‑facing Farmers applications as they have the highest exposure, increasing the risk of exploitation if vulnerabilities are missed. The cost of a single missed vulnerability (breach, regulatory fine, reputation damage, remediation) can be far greater than the cost of hiring a dedicated security tester. **Requirements** Burp suite, SQL , security testing, Veracode, Dynatrac