!! This position is for Network and Infrastructure Penetration Testing , NOT AppSec, NOT Web VAPT !! Castellum Labs is a next-generation cybersecurity technology venture based in Hyderabad, India, with global set of customer base and global ambitions. Our vision is to change the cybersecurity value model in the industry by using custom designed in-house technologies for service delivery. Our primary focus areas in cybersecurity are DevSecOps, Application Security (Life Cycle Security), Incident Response Services (Process, Tech & Enabling), Cyber Security Assessments, Phishing Simulation and Employee Awareness and Darkweb Monitoring & OSINT (External Threat Detection + Risk Rating). We use automation, cloud platforms, unique products, and a multi-layered security expert team to deliver services globally. Our services are delivered using a global delivery center and model, in a unique combination. We are hiring for Network and Infrastructure Penetration Testing for our Hyderabad office location. There are multiple position for experience range of 1 to 5 years. Role Description -- This is a full-time role for a Network and Infrastructure Penetration Tester (including cloud) at Castellum Labs. As a Network Penetration Tester, you will be responsible for performing security assessments, identifying vulnerabilities, conducting penetration testing, and providing recommendations for improving the security posture. This is an on-site role located in Hyderabad. Network penetration tester will conduct target assets based penetration testing of network devices, servers, DBs, endpoint devices, storage, cloud and other infrastructural assets. This role will work with other team members of VAPT, to cover all aspect of infra pen testing. This role will also cover, specialized infra such as AD, cloud (AWS, GCP and Azure) in its pen testing scope. This position is for Work from Office. No Work from Home option is available. Qualifications -- Good experience in network pen testing Good knowledge of security context and security configs of infra Good understanding of servers, databases, VMs, FW, Router, WAN & cloud Solid experience with pen testing tools, nmap, metasploit, recon tools and utilities Good experience in scripting using shell and python for the attack vector related work Understanding of the exploits which can be employed in various pen vectors Good knowhow of the reverse shell access under variety of compromise Good knowledge on network security concepts and network equipment Basic understanding of the MITRE ATT&CK framework Good understanding of red teaming models Ability to perform comprehensive pen testing Problem-solving and analytical skills Effective written and verbal communication skills Ability to work collaboratively in a team environment Relevant certifications such as CEH, OSCP, or CISSP are beneficial but not required Experience of participating in CTF of different types will be given preference Experience and Joining -- 1 to 5 years of experience Experience in cyber security services preferred Location is Hyderabad and joining is immediate (in 15 days) We can consider someone coming from the network security background We can also consider people coming from network management background Note - Note a 9 to 5 job Self driven approach is needed Startup environment, so high pressure situations are normal
!! This position is for Network and Infrastructure Penetration Testing , NOT AppSec, NOT Web VAPT !! Castellum Labs is a next-generation cybersecurity technology venture based in Hyderabad, India, with global set of customer base and global ambitions. Our vision is to change the cybersecurity value model in the industry by using custom designed in-house technologies for service delivery. Our primary focus areas in cybersecurity are DevSecOps, Application Security (Life Cycle Security), Incident Response Services (Process, Tech & Enabling), Cyber Security Assessments, Phishing Simulation and Employee Awareness and Darkweb Monitoring & OSINT (External Threat Detection + Risk Rating). We use automation, cloud platforms, unique products, and a multi-layered security expert team to deliver services globally. Our services are delivered using a global delivery center and model, in a unique combination. We are hiring for Network and Infrastructure Penetration Testing for our Hyderabad office location. There are multiple position for experience range of 1 to 5 years. Role Description -- This is a full-time role for a Network and Infrastructure Penetration Tester (including cloud) at Castellum Labs. As a Network Penetration Tester, you will be responsible for performing security assessments, identifying vulnerabilities, conducting penetration testing, and providing recommendations for improving the security posture. This is an on-site role located in Hyderabad. Network penetration tester will conduct target assets based penetration testing of network devices, servers, DBs, endpoint devices, storage, cloud and other infrastructural assets. This role will work with other team members of VAPT, to cover all aspect of infra pen testing. This role will also cover, specialized infra such as AD, cloud (AWS, GCP and Azure) in its pen testing scope. This position is for Work from Office. No Work from Home option is available. Qualifications -- Good experience in network pen testing Good knowledge of security context and security configs of infra Good understanding of servers, databases, VMs, FW, Router, WAN & cloud Solid experience with pen testing tools, nmap, metasploit, recon tools and utilities Good experience in scripting using shell and python for the attack vector related work Understanding of the exploits which can be employed in various pen vectors Good knowhow of the reverse shell access under variety of compromise Good knowledge on network security concepts and network equipment Basic understanding of the MITRE ATT&CK framework Good understanding of red teaming models Ability to perform comprehensive pen testing Problem-solving and analytical skills Effective written and verbal communication skills Ability to work collaboratively in a team environment Relevant certifications such as CEH, OSCP, or CISSP are beneficial but not required Experience of participating in CTF of different types will be given preference Experience and Joining -- 1 to 5 years of experience Experience in cyber security services preferred Location is Hyderabad and joining is immediate (in 15 days) We can consider someone coming from the network security background We can also consider people coming from network management background Note - Note a 9 to 5 job Self driven approach is needed Startup environment, so high pressure situations are normal Show more Show less
Attention Please apply only if you are an immediate joiner This is a full time position, with from office work only (NO WFH) Position is based out of Hyderabad Company Description Castellum Labs is a Next Gen Cyber Security Technology Venture that started in 2018, from Hyderabad, India with global ambitions, to change the cybersecurity service model. The company's vision is to change the cybersecurity value model in the industry. They use SaaS platforms, advanced lab infra in the cloud and a team of specialized experts to deliver long-term value. Castellum Labs' primary focus areas in Cyber Security are application security, network and infra security, cloud security, threat detection and response, and Darkweb monitoring and OSINT. We are hiring for a front end / UI developer who will work in a development team for the SaaS platform/product for cyber security. Full stack developer with inclination to front end would be the best fit for the role. This is next generation cyber security SaaS platform, delivering advance threat intelligence and darkweb monitoring capabilities. Front End Developer / Full Stack Developer Expertise (Generic Needs) Design and build efficient, reusable, Front end and Back End implementation Understand existing architecture and contribute to enhancements Contribute to Unit and Integration testing Identify bottlenecks and bugs, and devise solutions to these problems Excellent skills in debugging, problem diagnosis Collaboration and communication (verbal and written) skills Ability to be flexible and productive in a fast-paced environment Ability to work effectively as an individual and within a group Education And Experience Required Bachelor's or Master's degree in Computer Science, Information Systems, or equivalent. Experience - 2 to 6 years experience Joining - Within a month Location - Hyderabad (No WFH Option) Knowledge and Skills: Good Knowledge on UI/Front End development Working experience in React framework, React JS, Node JS Good experience on JavaScript, CSS, HTML, HTML5, Responsive UI development Database skills (MySQL), querying and data model design Understanding of APIs and their call structure/models AWS & Cloud technologies related basic knowledge Familiarity with web languages & agile methodologies Good communication skills & team skills Result oriented and schedule driven Experience in all phases of the software development lifecycle Ability to work with fast changing requirements Proficient understanding of code versioning tools such as GitHub Some Linux experience Note -- Not a 9 to 5 role (Needs deep involvement and no time constraints should be there) Needs an intent to get deeper into the cyber security areas across whole cyber spectrum
!! Attention !! Please apply only if you are an immediate joiner This is a full time position, with from office work only (NO WFH) Position is based out of Hyderabad, India Company Description Castellum Labs is a Next Gen Cyber Security Technology Venture that started in 2018, from Hyderabad, India with global ambitions, to change the cybersecurity service model. The company's vision is to change the cybersecurity value model in the industry. They use SaaS platforms, advanced lab infra in the cloud and a team of specialized experts to deliver long-term value. Castellum Labs' primary focus areas in Cyber Security are application security, network and infra security, cloud security, threat detection and response, and Darkweb monitoring and OSINT. Role Description These are SOC Analysts / Sr. SOC Analysts (L1 and L2) position. All these positions require candidate to perform 24x7 monitoring of enterprise customers, from SOC Centre in Hyderabad, India. Role requires, eye on the glass monitoring, alert analysis, case management, incident reporting and forensic. Role is expected to operate across three shifts on a rotation basis. L1 is to focus on monitoring and incident detailing. L2 is to focus on incident analysis, data collection and report preparation. Number of Positions - 4 Location - Hyderabad Experience Needed - Minimum 1 years .. Maximum 6 years Companies Preferred - People with experience in SOC tech companies (not from service companies) Preference - People from strong networking & system admin background who transitioned into security Condition - Strong interest in cyber security with demonstrable works/projects Certifications Needed - None Requirement You should be working in a SOC in L1 and/or L2 position with real hands on work We are not looking for L1 and L2 people who have done only eye on glass monitoring Your graduation can be in any of the science or engineering subjects Or else be in industry for one/two year with networking/admin background You will handle Alert monitoring Alert analysis Observables Establishment Raw log fetching and analysis Intelligence correlations Incident reporting Dashboard based outlier monitoring Incident life cycle management process SOAR automation development for customers You should be self initiated and driven to learn cyber security You should have worked and explored Linux during last two years You should know github well and should have used some tools from git You should have strong concept of cyber security fundamentals You should have some basic knowledge on shell & python You should have good enough concepts of different type of cyber attacks Deep understanding of MITRE framework in context of real time monitoring Very thorough understanding of the cyber kill chain and its applications in monitoring If you have what it takes to become a great cyber security SOC Analyst, please apply. Note -- Not a 9 to 5 role (Needs deep involvement and no time constraints should be there) Needs an intent to get deeper into the cyber security areas across whole cyber spectrum This is not a penetration testing role, so please do not apply if you wish to pursue VAPT career
Company Description Castellum Labs is a Next Gen Cyber Security Technology Venture that started in 2018, from Hyderabad, India with global ambitions, to change the cybersecurity service model. The company's vision is to change the cybersecurity value model in the industry. They use SaaS platforms, advanced lab infra in the cloud and a team of specialized experts to deliver long-term value. Castellum Labs' primary focus areas in Cyber Security are application security, network and infra security, cloud security, threat detection and response, and Darkweb monitoring and OSINT. Role Description This is a full-time Human Resources Business Partner / HR Manager role based in Hyderabad. The Human Resources Manager will be responsible for overseeing recruitment, employee relations, training and development, HR policies and procedures, and ensuring compliances. This HR person will also be responsible for payroll processing, compensation planning and management. The role will involve collaborating with leadership to implement HR strategies and initiatives that support the company's growth and employee engagement. Experience Any experience in the range of 4 to 12 Years Should have worked in HR role in small to mid-size company Should have handled overall HR function, not just one specific area of HR Terms No work from home option Should have constraints on late hours Qualifications Any experience in stated range Recruitment, Employee Relations, and Training & Development skills Knowledge of HR policies, processes and procedures Experience in implementing HR strategies and initiatives Excellent oral and written communication and interpersonal skills Ability to work collaboratively with leadership and cross-functional teams Bachelor's degree or post graduate degree in any of the areas Core Responsibilities Attendance tracking Leave management & approvals Employee connect and relationship Recruitment handling (interviews, HR screening, offers handling) Employee on boarding (doc collection, on boarding process & induction) Payroll processing (using automated platform) and salary disbursement Compensation planning and salary structure management HR policy formations and policy structuring Management reporting on HR metrics Employee insurance handling Compliances handling Employee data maintenance and management Employee HR document reviews and maintenance Growth Opportunity This role will grow into HR Manager and Director over a period of time.
NOTE -- This role is for you, IF YOU ARE A NETWORK ENGINEER AND WANT TO SHIFT INTO SECURITY. NETWORK SECURITY ADMIN & WANT TO SHIFT TO NETWORK PEN/AUDIT/CONTROLS. Company Description Castellum Labs is a next-generation cybersecurity technology venture based in Hyderabad, India. Since 2018, our mission has been to revolutionize the cybersecurity service model. We use SaaS platforms, advanced cloud-based lab infrastructure, and a team of specialized experts to deliver long-term value to our clients. Our goal is to establish value-based, long-term partnerships with our customers and co-manage their overall security posture. Our primary focus areas in cybersecurity include Application Security, Threat Detection & Response, and Darkweb Monitoring & OSINT. Role Description This is a full-time on-site role for a Network Security Engineer/Consultant at Castellum Labs in Hyderabad. As a Network Security Engineer, you will be SME for network, network security, network engineering, cybersecurity, and information security. Your day-to-day tasks will include reviewing, testing, assessing and auditing the security of the network infrastructure. You will be involved in conducting security assessments, and implementing security controls for our customers. You will work closely with the team to proactively identify and mitigate network security risks for our customers. Qualifications Network Administration, Network Security, and Network Engineering skills Cybersecurity and Information Security knowledge (SME for Network Security Configs/Controls) Experience in implementing and maintaining network security controls (NIST/CIS basics) Strong understanding of network protocols, routing, and switching (ports/SOCKETS) Knowledge of firewall technologies and intrusion detection systems Experience with vulnerability assessment and penetration testing for networks Ability to analyze network traffic and identify potential security threats Excellent problem-solving and troubleshooting skills Relevant certifications such as CCNA, CISSP, and CEH are a plus Bachelor's degree in Computer Science, Information Technology, or a related field Experience Should have managed network devices, servers and databases Should have worked on creating or at least understanding enterprise class network design Should have used network monitoring and network management tools Should have tried some network security testing tools Experience -- 1 to 5 Years Joining -- Immediate Location -- Hyderabad Terms - No Work from Home Option
The Company -- Castellum Labs is a Next Gen Cyber Security Technology Venture that started in 2018, from Hyderabad, India with global ambitions, to change the cybersecurity service model. The company's vision is to change the cybersecurity value model in the industry. They use SaaS platforms, advanced lab infra in the cloud and a team of specialized experts to deliver long-term value. Castellum Labs' primary focus areas in Cyber Security are application security, network and infra security, cloud security, threat detection and response, and Darkweb monitoring and OSINT. Opportunity -- Castellum Labs is Hiring Application Security Engineers and Sr. Application Security Engineers for a new age Cyber Security Company, Castellum Labs. We are a deep tech driven cyber security services company based out of Hyderabad. Please check our LinkedIn Page .... https://www.linkedin.com/company/castellumlabs/ Follow our page for exceptional knowledge pieces and job opportunities. What We Do in AppSec -- Application Security is one of our core areas, with a lot of focus. We have handled some of the largest and most complex application security engagements during last three to four years. We specialize across entire spectrum of application security, SAST, DAST, Code Review, Tools Integration, App Data Security and DevSecOps. We offer Advanced Application Security Services to customers world-wide, using a unique set of approach and model. We deliver high quality AppSec using a Specialized and Secure AppSec Lab and an advance cloud based AppSec Platform, appFORT. We have developed our own AppSec Methodology (RisQ), which combines threat modeling for software, multiple AppSec frameworks and risk reduction process, to deliver exceptional AppSec coverage. If you would like to go beyond Penetration Tester type of AppSec career, please apply !! Positions, Location and Joining -- Number of Positions -- >> 10 Joinin Time for Positions -- >> Immediate Experience Needed -- >> 1 to 5 Years Location of Positions -- >> Hyderabad Experience Needed Summary -- >> Vulnerability Detection, Pen Testing, App Testing (Dynamic & Static), Scan tools, etc. We would like the candidates, who have understood the exploit model for web/applications well and can create attack scenarios by exploiting vulnerabilities in web apps. Candidates, who have experimented with a lot of scan tools and then gone about creating automated routines, utilities and models are the ideal candidate for these positions. Experience -- Some key areas of experience needed for these positions are, OWASP Model Exceptional Linux Knowledge Shell & Python Programming basics DAST/SAST/IAST/SCA/Design-Security Web and Mobile Application Architectures Web/Mobile/API/Standalone AppSec Testing Multiple Interception and Scan Tools (Dynamic & Static) Manual Code Review of Applications for Security Assessment Full Exploit Vector Execution through Penetration Testing Routines Knowledge about Vulnerable Applications for Testing Practice (Open Source) Open Source Tools for Application Security Testing (BurpSuite, NMAP, ZAP, etc.) Please apply within next three days !! Note - We are not looking We are not looking for bug bounty specialists We are not looking for people who are looking for a 9 to 5 job We are not looking for people who are in salary hunting mode We are not looking for people who want to hop around, every year