Associate Security Consultant

Who We Are,

SecureLayer7

Job Role-Associate Security Consultant

Requirement:

• Minimum 1-3 years of experience in cybersecurity domain.
• Candidate should have CVE IDs or Research Paper Submission on the National & International Conferences
• Candidate should have Bug Bounty or hall of fames from major companies
• Candidate should be an active CTF Player of HackTheBox.
• Candidate Must be a team player with multi-tasking capabilities to handle multiple tasks at a time
• Hands-on experience on the following:
• Advanced Web Application Penetration Testing
• API Penetration Testing (SOAP & REST)
• Mobile Application Penetration Testing (Android & IOS)
• Cloud Infrastructure & Application Penetration Testing
• Thick Client Application Penetration Testing
• Source Code Audit (Manual & Automated)
• Network Vulnerability Assessment & Penetration Testing

Primary Responsibilities

• Performing VAPT Activities such as Network, Web, Mobile, API & Cloud Penetration Testing
• Preparing the Detailed Reports on the identified Vulnerabilities
• Preparing the detailed Workaround/Mitigations of the vulnerabilities while reporting to the client
• Detailed Discussion with Clients on the vulnerabilities & Mitigations as per their feasibility
• Writing Technical Blogs on the latest vulnerabilities or technologies in the market
• Giving Technical Talks to the internal team on the latest technologies and approach for different applications/networks
• Giving Webinars on the latest technologies or vulnerabilities
• Research on finding Zero-days on the applications/products in the market
• Travelling Abroad for Onsite Assessments or opportunities

Qualifications:

• Knowledge of TCP/IP, OSI Layer, IPv4 & IPv6, Network Protocols and Wireless Communication skills preferred
• Knowledge of at least one programming language such as java, c#, c, c++
• Knowledge of at least one scripting language such as python, shell script, JavaScript and good command to write automated tools & scripts during the Pen testing process.
• Candidate Must be able to write their own tools & scripts as when required
• Advanced knowledge of multiple operating systems (Windows, Linux, BSD, etc.)
• Familiarity with Advanced Persistent Threat (APT) activity; Offensive hacker mindset preferred

Skills:

• Excellent technical writing skills and attention to detail
• Able to give training and communicate vulnerabilities to developers/managers
• Ability to be agile and work in a fast-paced environment
• Excellent written and verbal communication skills

Education/Certifications:

• Bachelor's degree in computer science or equivalent.
• OSCP, CEH or other relevant industry certification
• Must be able to travel frequently and on short notice