7 Cves Jobs

You will be responsible for performing threat models and architecture reviews for complex projects. Additionally, you will conduct penetration testing on a wide range of technologies and communicate your findings effectively through high-quality reports and presentations. Your role will also involve providing guidance and education to partnering teams, building relationships, influencing and improving security culture through various initiatives such as presentations and training sessions. Furthermore, you may participate in or lead Red Team operations against large organizations within Apple, support partnering blue teams in responding to threats, and enhancing detections. You will be expected to develop tooling to support your primary responsibilities and deliver security campaigns and initiatives to enhance the security posture of the organization. To be considered for this role, you should have experience in performing threat models or architecture reviews, a strong ability to penetration test applications, infrastructure, and cloud environments, and a solid understanding of fundamental networking and security concepts. Proficiency in programming/scripting languages such as Go, Java, JavaScript, Python, etc., as well as the ability to read and audit various programming languages, will be essential. Familiarity with MacOS and other Unix-based systems, knowledge of cloud architecture and security, and a BSc in Computer Science or equivalent qualification are desired qualifications. Preferred qualifications for this position include OSCP or OSWE certification, experience with CTFs or hacking labs, securing and pentesting mobile applications, participating in or leading red teams or similar offensive security engagements, and having publications, security research, bug bounties, or CVEs to your credit. Experience in presenting to both technical and non-technical audiences, a passion for information security, the ability and motivation to learn new skills, concepts, and technologies, excellent written and verbal communication skills, and the ability to take ownership of security problems and drive remediation to completion will be highly valued. You should be self-motivated, able to work independently and as part of a global team, and have the ability to grasp large sophisticated systems and context-switch when needed. Additionally, you must be willing to work from both the office and home, with some international travel may be required. If you meet the qualifications and are interested in this opportunity, please submit your CV for consideration.,

As a Cloud Managed Services Engineer at Versa Networks, Inc., you will play a crucial role in providing end-to-end management and technical support for the Versa hosted platform/solution. Your primary responsibility will be to troubleshoot and resolve diverse complex networking issues reported by customers, ensuring seamless operation and customer satisfaction. You will need to possess a Bachelor's/Master's degree in IT/Computer Science or equivalent, along with 5+ years of relevant hands-on experience in the field. Advanced routing/switching skills such as CCNP or equivalent level of expertise are required, and Versa certification (SD-WAN Associate/SD-WAN Specialist) would be highly preferred. Your role will involve monitoring and maintaining the hosted environment, assisting customers in resolving product and network problems, and collaborating with engineering teams to replicate and resolve customer issues. Additionally, you will be responsible for incident/ticket lifecycle management, infrastructure setup, and creating knowledge articles. Proficiency in scripting languages like bash/python is optional but beneficial. Essential skills for this role include expertise in routing protocols (OSPF, BGP), MPLS, L3 VPN, TCP/IP protocol suite, firewalls, IPSec VPN, SSL-VPN, and network security technologies. You should have a strong understanding of security logs, vulnerabilities, threat mapping, and experience in managing security appliances and network infrastructures. Desired skills include experience in threat analysis, security incident handling, and certifications like CEH, GIAC, CCSP. The ideal candidate will be a self-starter with excellent communication, problem-solving, and troubleshooting abilities, committed to delivering exceptional customer service. You should be comfortable working in a 24x7 rotational shift environment and have a willingness to learn and adapt to new technologies. As part of the Versa Networks team, you will enjoy a competitive compensation package, quality of life benefits, and the opportunity to work in a collaborative and inspiring environment with skilled and passionate colleagues. If you are a team player with a can-do attitude, strong communication skills, and a proactive approach to problem-solving, we invite you to join our dynamic organization and contribute to our success in providing innovative networking solutions.,

You will be joining NTT DATA as a DevOps - Digital Solution Consultant Lead Consultant based in Hyderabad, Telangana, India. As the DevOps Engineer, you will be primarily responsible for ensuring the overall health, performance, and capacity of our Internet-facing services. Your role will involve providing guidance and mentorship to engineers across different teams, setting high technical standards for automation and engineering tooling, and implementing standard engineering practices such as auto-scaling, CI/CD, release engineering, and high availability in all engineering components. In this position, you will collaborate with external data centers and AWS for provisioning, outages, and maintenance activities. Familiarity with Rails and deployment tools like Capistrano is required, and experience with Jenkins will be advantageous. You will play a crucial role in rolling out and deploying new product features and installations, ensuring rapid iteration and continuous growth. Being vigilant about current CVEs, potential attack vectors, and vulnerabilities is essential, and you will be responsible for applying patches promptly. Your responsibilities will also include handling incident responses, troubleshooting, and fixes for various products and services. Collaboration with development teams to design platforms with scalability, operability, and performance in mind is crucial. Additionally, you will participate in a 24x7 rotation for production issue escalations and continuously evaluate and adapt to new technologies. NTT DATA is a global innovator of business and technology services with a commitment to helping clients innovate, optimize, and transform for long-term success. As a Global Top Employer, we have diverse experts in over 50 countries and a strong partner ecosystem. Our services encompass business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation, and management of applications, infrastructure, and connectivity. NTT DATA is a leading provider of digital and AI infrastructure globally, operating as part of the NTT Group with significant investments in R&D to support organizations and society in navigating the digital future confidently and sustainably. For more information, visit us at us.nttdata.com.,

About the internship: As an intern at Innobuzz Learning Solutions, your primary responsibilities will include conducting security assessments of web apps, mobile apps, and APIs. You will be required to research the latest cybersecurity trends and collaborate with the team to create cybersecurity user awareness sessions on social media. Additionally, you will assist senior cybersecurity professionals in Vulnerability Assessment and Penetration Testing (VAPT) projects, which involves performing vulnerability management and reporting. It will also be your responsibility to develop and maintain detailed documentation of security assessments, findings, and remediation efforts. Keeping yourself updated with the latest cybersecurity threats, vulnerabilities, and best practices is crucial. Furthermore, you will research critical Common Vulnerabilities and Exposures (CVEs) and develop Proofs of Concept (POCs) for the assessment teams. Who can apply: This internship is open to candidates who are available for a full-time, in-office commitment for a duration of 6 months. Applicants should possess relevant skills and interests in cybersecurity. Stipend: INR 10,000-20,000 per month Other perks: In addition to the stipend, interns will receive a certificate, letter of recommendation, and opportunities for industry visits. Location: NSP, Pitampura, Delhi About Company: Innobuzz Learning Solutions has been a leader in providing top skills in Ethical Hacking, Cybersecurity, CISE, ADIS, CEH, and CompTIA certifications for over 20 years. The expert-led courses in Delhi & NCR are designed to equip individuals with the necessary knowledge to protect against evolving cyber threats. The company also offers cybersecurity services, such as threat analysis, penetration testing, security audits, and vulnerability assessments, to assist businesses in maintaining their security in a digital world. Job Type: Internship Contract length: 6 months Benefits: - Commuter assistance - Flexible schedule - Paid time off - Work from home options Schedule: Day shift Performance bonus Work Location: In person Expected Start Date: 20/01/2025,

Join us as an Application Security Consultant at Barclays, where you will play a key role in supporting the successful delivery of Location Strategy projects while adhering to plan, budget, agreed quality, and governance standards. You will be at the forefront of evolving our digital landscape, driving innovation, and ensuring excellence in our digital offerings to provide unparalleled customer experiences. To excel in this role, you should possess a strong understanding of CVEs, CWEs, and their impact on applications. Additionally, you must have in-depth knowledge of various AppSec technologies such as SAST, DAST, SCA, IAST, and RASP. Proficiency in at least one programming language and framework, as well as experience in writing scripts in languages like Python and JavaScript, are essential skills for this position. Desirable skill sets to have include the ability to showcase expertise in low-level technical topics, such as native development on any platform, and experience with languages used in modern mobile development like Java+JNI, Objective C, and Swift. Familiarity with concepts like reverse engineering, assembly, and mobile code hardening techniques will be beneficial. Furthermore, the ability to replicate vulnerabilities in a lab environment is a plus. As an Application Security Consultant, you will be based in Pune and will be responsible for supporting various business areas with day-to-day tasks, including processing, reviewing, reporting, trading, and issue resolution. You will collaborate with teams across the bank to align operational processes, identify areas for improvement, and implement operational procedures and controls to mitigate risks while maintaining efficiency. In this role, you will also develop reports and presentations on operational performance, identify industry trends, and participate in projects to enhance operational efficiency. As an Assistant Vice President, you will consult on complex issues, advise People Leaders on escalated matters, and contribute to risk mitigation and policy development. You will take ownership of managing risk, collaborate with other business areas, and engage in data analysis to creatively solve problems and communicate complex information effectively. Your role will also involve influencing stakeholders to achieve desired outcomes. All colleagues at Barclays are expected to embody the Barclays Values of Respect, Integrity, Service, Excellence, and Stewardship, as well as the Barclays Mindset of Empower, Challenge, and Drive. Your commitment to these values and mindset will serve as our moral compass and guide our behavior within the organization.,

As an intern at CertCube, you will have the opportunity to engage in various cybersecurity activities to enhance your skills and contribute to the team's success. Your day-to-day responsibilities will include the following: - Conducting security assessments of web apps, mobile apps, and APIs to identify potential vulnerabilities and risks. - Keeping up with the latest cybersecurity trends through dedicated research efforts. - Writing informative and engaging blog posts on diverse cybersecurity topics for our CertCube Labs blogging platform. - Collaborating with the team to create cybersecurity user awareness sessions on social media platforms. - Assisting senior cybersecurity professionals in Vulnerability Assessment and Penetration Testing (VAPT) projects, including vulnerability management and reporting tasks. - Developing and maintaining detailed documentation of security assessments, findings, and remediation actions. - Staying abreast of the newest cybersecurity threats, vulnerabilities, and best practices to enhance the team's knowledge and preparedness. - Researching critical Common Vulnerabilities and Exposures (CVEs) and crafting Proofs of Concept (POCs) for assessment teams" use. CertCube, an ISO 9001:2015 certified company, is a leading IT security firm that offers immersive training programs aimed at equipping students with the practical skills needed to defend organizational systems, networks, web, mobile, and servers against active threats. Our mission includes spreading cybersecurity awareness globally through comprehensive IT security training. We pride ourselves on our focused approach, cutting-edge online learning environment, flexible training options, competitive pricing, and innovative delivery methods. In addition to training services, CertCube provides professional IT security solutions to safeguard organizations" people, processes, and technologies. With a rich history as a trusted penetration testing company, we have a solid track record of delivering high-quality projects for clients worldwide. Join us at CertCube and be part of a team dedicated to enhancing cybersecurity practices and protecting organizations from evolving threats.,

Job description Job Title: Senior Security Researcher About Role : Develop cutting-edge IPS signatures that shield against emerging threats and Zero/N days vulnerabilities. Analyze and reverse engineer cyber-attacks and new vulnerabilities (CVEs) and effectively implement preventive measures to stay ahead of evolving threats. Develop and improve tools to automate analysis tasks, simulation software and administer a lab environment to replicate attacks. Publish technical blogs to spread awareness and help defenders with the necessary resources to protect their organizations. Experience with MITRE evaluation process would be added advantage. Vulnerability RCA, reverse engineering and POC verification and signature development for MAPP program Capable of working with little to no supervision. Company Benefits and Perks: We work hard to embrace diversity and inclusion and encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees. Retirement Plans Medical, Dental and Vision Coverage Paid Time Off Paid Parental Leave Support for Community Involvement Were serious about our commitment to diversity which is why we prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.