Infra security analyst

Posted: March 5, 2022, 12:58 p.m. - Full Time - Mumbai


Looking for 3-4 years of experience in VAPT specific

Job Description: The candidate should be good at performing security testing of applications and infrastructure with good reporting skills as well.

Should be good at performing the following:

  • Web Application Security Testing

  • Infrastructure (Server + network)

  • Pentesting exercises against the assigned target scope.

  • Write automation & PoC scripts from time to time.

  • Good experience in performing Red Team exercises.

  • Strong expertise in Web VAPT & Network VAPT.

  • Experience in cloud Web/server security Testing

  • Understanding of web, mobile, network and protocols like HTTP(S), TCP/IP, TLS, ARP, SMTP, DNS, etc.

  • Understanding of how data flows through an application and/or network and connected components (SMTP, LDAP, Database servers).

Knowledge of security tools, procedures, and methodologies (Security +, CEH, OSCP) is a plus.

Should have good hands on experience on tools i.e. Burp Suite, Kali, Nessus, Acunatix, Metasploit, Qualys etc. He should have good exposure in red teaming activities, Web app and Mobile App security testing. Good knowledge of NIST and OWASP standards Good to have software background and now exploring Cyber Security. His responsibilities will include managing VAPT projects, Creating Technical and Executive Reports, Perform Red Team Exercises.