- Perform Web Application Penetration Testing Network VAPT Mobile Application PT Source code review Wireless pentesting.
- Write detailed reports on VAPT findings.
- Perform and present research on various attack vectors.
- Perform red teaming activities.
- Comprehend client needs and deliver security solutions tailored to intricate security testing and risk demands.
- Should be capable of handling escalations.
Requirements
- Should have a minimum of 6 to 8 months or equivalent skills in the security domain.
- Experience or knowledge of Web Application API Security and mobile application Testing using both Manual and Automated Penetration Testing Methodologies
- Experience or knowledge in network penetration testing system vulnerability assessment & security configuration review
- Experience or knowledge in performing VAPT as per OWASP Top 10 SANS Top 25 and WASC NIST and SANS Security Guidelines.
- Ability to conduct Red Team assessments/Attack Simulations aligned to cyber killchain and MITRE ATTACK
- Experience in conducting configuration reviews for OS DB Firewall Routers Switches and other infrastructure components
- Knowledge on Tools : Nmap Kali Linux Metasploit Armitage Maltego Burp Paros Proxy Nessus nexpose wireshark sqlmap etc.
- Experience or knowledge on Black Box/White Box testing with the capability of finding business logic vulnerabilities OWASP testing guide
- Ability to suggest remediation to vulnerabilities observed in Application and configuration.
- Document security breaches and assess the damage they cause.
- Stay current on IT security trends and news.
- Good presentation and technical writing skills. Strong communication and good customer handling skills.
- Ability to organize and conduct work independently.
- Experience with any programming language is a plus.
Should have a minimum of 6 to 8 months or equivalent skills in the security domain. Experience or knowledge of Web Application, API Security and mobile application Testing using both Manual and Automated Penetration Testing Methodologies Experience or knowledge in network penetration testing, system vulnerability assessment & security configuration review Experience or knowledge in performing VAPT as per OWASP Top 10, SANS Top 25, and WASC, NIST, and SANS Security Guidelines. Ability to conduct Red Team assessments/Attack Simulations aligned to cyber kill-chain and MITRE ATTACK Experience in conducting configuration reviews for OS, DB, Firewall, Routers, Switches and other infrastructure components Knowledge on Tools : Nmap, Kali Linux, Metasploit, Armitage , Maltego, Burp, Paros Proxy Nessus, nexpose, wireshark, sqlmap etc. Experience or knowledge on Black Box/White Box testing with the capability of finding business logic vulnerabilities, OWASP testing guide Ability to suggest remediation to vulnerabilities observed in Application and configuration. Document security breaches and assess the damage they cause. Stay current on IT security trends and news. Good presentation and technical writing skills. Strong communication and good customer handling skills. Ability to organize and conduct work independently. Experience with any programming language is a plus.