Network security analyst

Posted: Dec. 29, 2021, 12:22 p.m. - Full Time - Noida

Responsibilities: - ● Perform network pen testing of high profile, large impact technology-enabled projects (e.g. firm acquisitions, strategic growth initiatives). ● Activities include network pen testing, exploit using exploits kits or custom exploits. ● Experience with Red and Blue teaming or equivalent. ● Understanding of Internet protocols (i.e., DNS, HTTP, TCP, UDP, TLS, IPSEC, SMB). ● Coding/scripting experience in modern scripting languages (i.e., Python, Ruby, Powershell) ● Solid understanding of vulnerabilities reported and the ability to conduct impact analysis of security threats. ● Serve as escalation for risk assessment team as it relates to outstanding security risks

Qualifications: -

● Minimum of 2 years of work experience in penetration testing, scripting languages (Python,PowerShell, Java, Perl), and offensive tools such as Nmap, Nessus, Metaspolit Framework,Cobalt Strike, Rapid 7 ● GPEN, GIAC or OSCP certifications are good to have but not mandatory ● Working knowledge of RSA's archer vendor management; knowledge of Advanced Persistent Threats or Emerging Threats preferred. ● Strong knowledge and experience with Cloud Security, AWS, and Azure and a deep understanding of attack surfaces, including hands-on experience with various Cybersecurity technologies and standards (MITRE ATT&CK framework) ● Extensive hands-on expertise with Cobalt Strike or similar exploitation platforms with the ability to Execute red and purple team exercises to highlight gaps in the security posture