Penetration tester

Posted: Nov. 23, 2021, 7:16 a.m. - Full Time - Bangalore

Job description:

To be part of the Growing Cyber Security operations Team in Asia. Delivery role focussed towards Cyber Security space, a wider role covering VA/PT (Mobile, Web & IoT ) , Threat Mgmt & Analysis around all Security Incidents & testing requirement.

PT experience at least 6 months required and this position not freshers.

Summary of the Role:

You will be joining a rapidly growing IT security organization to become a part of our global Professional services Team delivering enterprise Penetration testing, security assessments & cyber consulting services. You will be analyzing security threats, responding to security threats, and implementing and maintaining the company’s security services.

Duties:

  • Work under the guidance of Sr. cybersecurity resource & management .
  • Execute VA/PT on a timely basis, run security assessment around Mobile, web, * * IoT, server, Network & security systems.
  • Execute Security Assessments & architecture reviews.
  • Carry code review for existing applications.
  • In-depth security analysis and forensics
  • Investigating security violations attempts to gain unauthorized access, virus infections that may affect the network, or other event affecting security
  • Review Security reports, logs & Incidents. Advanced security incident handling and response
  • In-depth security analysis and forensics
  • Security recommendations and remediation.
  • Advanced SIEM configuration and customization
  • Threat modelling
  • Maintain internal relationships with Senior Management, and other business areas as required.
  • Develop documents around new standards, document incidents & risks.

Required Skills:

  • Good understanding of security principles and technologies (access control, security protocols, threat and vulnerability management, incident and event management, etc.)
  • 6 months of Execution experience with Web & mobile application Penetration testing.
  • Understanding of the security landscape (attack vectors, tools, best practices for attack detection and mitigation)
  • Understanding of security Service Operations processes (Incident and Event Management, Incident Isolation, Classification, and Escalation)
  • Hands-on experience with Security Products (firewalls, IPS, VPN, malware protection endpoint protection)
  • Knowledge pertaining to analyzing event data from various security devices and enterprise applications such as AV detection, advanced endpoint analysis, firewall, proxy andVPN
  • Basic experience with packet capture tools and analysis of captures
  • Ability to resolve complex incidents and problems with focus on securityproducts
  • Working knowledge of UNIX/Linux operating systems
  • High level of customer service and ability to comply with Service

Management processes

  • Good written and oral communication skills are required.
  • Exceptions can be drawn on above prerequisite by the hiring manager based on certain conditions & agreement between the employee & Employer.