Senior security analystPosted: March 28, 2022, 1:22 p.m. - Full Time - Ahmedabad
We are looking for passionate candidates who wants to build their carrier in the cyber security field and having best knowledge and experience for VAPT domain. Click on Apply and we will reach out to you soon.
Your responsibilities as an Senior Security Analyst - VAPT:
Conduct Vulnerability Assessment and Penetration Testing and configuration review for network, web application, mobile application and thick-client applications. Conduct Vulnerability Assessment & configuration reviews for OS, DB, Firewall, Routers, Switches, and Endpoint Security other security devices/components. Perform manual testing of web applications, mobile applications, and thick clients. Conduct source-code review using automated and manual approaches. Prepare detailed reports. Ensure timely delivery of status updates and final reports to clients. Handle Client's queries. Keep oneself updated on the latest IT Security news, exploits, hacks. Prepare Threat Intelligence reports for newly discovered threat agents, exploits, attacks. Conduct cyber-attack simulations as part of the RED team activity.
Skill sets we require:
Extensive Working knowledge of Operating systems: Windows and variants, Unix and variants, Linux and variants, MacOS. Knowledge about Networks Security, IDS, IPS, and Vulnerabilities. Knowledge about Web/Mobile/Thick Client Application Security Assessment. Knowledge about zero-day vulnerability exploitation Well versed in the use of ethical hacking/network scanning tools such as Burp Suite, Echo Mirage, Nmap, Amap, Nessus, Qualys, OpenVAS, SAINT, Metasploit, Acunetix Web Application Scanner amongst others. PHP/.NET/Python/Bash Script OR one or more programming languages like C/C /Java.
Min 2+ years of experience in penetration testing of Infra/web/mobile. BCA/MCA/B.Tech/M.Tech in Computers Science or Information Technology or related fields. Previous Hall of Fame, Bug bounty & CTF achievements are plus. Strong written and verbal communication skills, with a proven ability to communicate with technical staff, as well as project teams. Keeping pace with standards and technologies related to security.
Pentest standards and methodologies, OWASP, SANS, NIST among others.
Familiarity with cloud platforms (preferably Azure) Efficient and effective usage of Pentest tools as well as demonstrate less dependency on tools.