TC_CS_NGSO - TEM (Penetration testing)_Staff 3,4_ India
Bengaluru, KA, IN
1d ago

The opportunity

We’re looking for Security Analyst with expertise in penetration testing. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering.

Your key responsibilities

  • Perform penetration testing which includes internet, intranet, web application, wireless, social engineering, physical penetration testing.
  • Execute red team assessments to highlight gaps impacting organizations security postures.
  • Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations.
  • Perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations.
  • Execute penetration testing projects using the established methodology, tools and rules of engagements.
  • Convey complex technical security concepts to technical and non-technical audiences including executives.
  • Strong knowledge of OWASP Top 10 web and the ability to effectively communicate methodologies and techniques with development teams
  • Ability to automate DAST / SAST solutions and reporting
  • Support SDLC and agile environments with application security testing and source code reviews.
  • Provide technical leadership and advise to junior team members on attack and penetration test engagements.
  • Develop automated solutions that mitigate risks throughout the organization.
  • Understanding and experience with Active Directory attacks.
  • Understanding of TCP / IP network protocols.
  • Skills and attributes for success

  • Experience with scripting / programming skills (e.g., Python, PowerShell, Java, Perl etc.) updated and familiarized with the latest exploits and security trends.
  • Familiarity with dynamic web application vulnerability scanning tools and services (Acunetix, HP WebInspect, IBM AppScan, BurpSuite, IBM AppScan)
  • Familiarity with static code analysis tools and services (CheckMarx, Fortify Static Code Analysis tool, Veracode, Coverity, IBM AppScan Source)
  • Understanding and experience with Active Directory attacks.
  • Understanding of TCP / IP network protocols.
  • Understanding of network security and popular attacks vectors.
  • Understanding of web-based application vulnerabilities (OWASP Top 10).
  • Experience with scripting / programming skills (e.g., Python or PowerShell or Java or Perl etc.).
  • To qualify for the role, you must have

  • BE / B.Tech / MCA.
  • Minimum of 1 year of work experience in penetration testing which may include at least three of the following : internet, intranet, web application penetration tests, wireless, social engineering, physical and Red Team assessments.
  • One of the following certifications : OSCP, CRTP, GPEN, eWPT.
  • Knowledge of Windows, Linux, UNIX, any other major operating systems.
  • 2-4 years of work experience in Strategy and Operations projects
  • Strong Excel and PowerPoint skills.
  • Report this job

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form