It's fun to work in a company where people truly BELIEVE in what they are doing!
We're committed to bringing passion and customer focus to the business.
10+year experience in Vulnerability Assessment & Penetration Testing as well as Source Code Review of Web Applications and articulate reports of the assessment and present findings to various stakeholders as well as support platform team in patching the identified vulnerabilities
In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
Demonstrated deep technical penetration testing on IT infrastructure, web applications, mobile platforms and red teaming.
In - depth understanding of SDLC and Secure SDLC Models. Conduct Application Security testing for Web and client Server application to assess the vulnerabilities and share remediation guidance.
Good knowledge and performed vulnerability assessments on Complex Infrastructure.
Deep understanding of and experience with computer system vulnerability concepts and frameworks such as CVE / CPE / CWE as well as platforms such as Qualys, Rapid7, Nessus etc.
Produce reports with details on vulnerabilities including impact assessments for CGI; affected products. And recommendations for identification and remediation when possible;
and methods of mitigating or detecting active exploitation.
Knowledge of operating System (windows, Unix / Linux, Solaris etc) & knowledge of TCP / IP protocols, network analysis, and network / security application
Solid Experience with network architectures, specifically firewalls, IDS / IPS, network taps.
Demonstrated knowledge of SANS testing methodologies, OWASP and related tools such as Qualys, Nessus, Nmap, Burp suite, HP Fortify, Metasploit, Kali Linux O.S, etc.
Experience of scripting languages, such as PowerShell, Python, Bash, PHP, etc.
Participate in innovation projects including the building; deployment and evaluation of new technologies
Skilled communicator (both verbal and written) and with proven experience in expressing technical observations and opinions, in business terms.
Demonstrated ability to take the initiative and achieve results in a fast-paced and dynamic environment.
Professional Qualification : CISSP / ISO 27001 / CEH / ECSA / OSCP will be an added advantage
Concentrix is an equal opportunity employer. Concentrix evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability status or any other legally protected characteristic.