Senior Staff Engineer - Security Engineer
Senior Staff Engineer - Security Engineer
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
We are looking for a Sr. security professional with experience performing security testing (Pen testing) of Applications & Cloud Environments and articulate the findings in an easily consumable manner to the various internal stakeholders.
You should have exposure to work as a security advisor/consultant for client organizations.
Capability to think OutoftheBox and work as a security advisor for client org is key to this role.
Qualifications :
Must have Skills: Penetration Testing Vulnerability Management Cyber Risk Consulting.
Overall 8 years of experience in the cyber security domain.
45 years of experience in application security testing of web & mobile applications (android iOS) API and infrastructure (cloud network server).
Should have at least 3 years of experience in Security consulting role working as consultant and/or advisor to the client.
Thorough knowledge of the OWASP framework and testing guide.
Handson knowledge of Pen testing red team exercise and bug hunting.
Knowledge on scripting (e.g. in Python PowerShell JavaScript) to write automation scripts & PoCs.
Knowledge on SSO and OAuth 2.0 flows.
Should be able to perform assessment to detect openshares and noncompliant AD accounts.
Should be well versed with the following tools: Burp Suite Postman VirtualBox Kali Linux Metasploit Android Studio (AVD) Scripting Tenable AWS Azure and GCP DAST and SAST solutions Snowflake and data modeling concepts.
Good to have skills:
- Security certifications i.e. OSCP OSWE CCSP are a plus.
- Experience of cloud security.
- Exposure to SIEM and SOC side of security ecosystem.
- Working experience of advisory/consulting role for CISO org.
- Exposure to DB scripting data extraction and dashboarding will be a key advantage.
- Should be good at performing Security Testing of the following: Web Application API Mobile applications (android iOS) Infrastructure (Server network) AWS Azure and GCP environments.
- Pen Testing and Red team exercises against assigned target scope.
- Write automation & PoC scripts from time to time.
- Pentest Identity Provider (IdP) integrated applications with SSO and OAuth.
Good To Have Skills: Snowflake Database Design General Experience
Remote Work :
Yes
Employment Type :
Fulltime
Employment Type
Remote
Company Industry
Department / Functional Area
Engineering
Key Skills
- Computer Science
- Docker
- Kubernetes
- Python
- VMware
- C/C++
- Go
- System Architecture
- gRPC
- OS Kernels
- Perl
- Distributed Systems
