Cyber Security Engineer - Vulnerability Management

As a Vulnerability Assessment and Penetration Testing (VAPT) Team Lead at HackIT, a CERT-IN empaneled cybersecurity firm based in Kochi, you will be responsible for the following: Role Overview: You will lead, manage, and mentor a team of junior penetration testers. Your role will involve performing Web, Mobile, API, and Network Security Testing using both manual and automated techniques. Additionally, you will conduct Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and develop Proof-of-Concept exploits to demonstrate vulnerabilities. Providing clients with detailed remediation guidance and support to address security gaps, ensuring projects are delivered within deadlines and meet quality standards, and effectively communicating findings with clients, stakeholders, and senior management are crucial aspects of your role. Lastly, you will prepare comprehensive, high-quality technical reports that clearly explain vulnerabilities, risks, and mitigation strategies. Key Responsibilities: - Lead, manage, and mentor a team of junior penetration testers. - Perform Web, Mobile, API, and Network Security Testing using manual and automated techniques. - Conduct SAST, DAST, and develop Proof-of-Concept exploits. - Provide clients with detailed remediation guidance and support. - Ensure project delivery within deadlines and quality standards. - Communicate findings effectively with clients, stakeholders, and senior management. - Prepare high-quality technical reports explaining vulnerabilities and mitigation strategies. Qualifications Required: - 3 - 5 years of experience in Application, Infrastructure, or Network Penetration Testing. - Prior experience as a Team Lead or Project Lead in a cybersecurity testing environment. - Strong knowledge of security frameworks and methodologies like OWASP Top 10, NIST, and MITRE ATT&CK. - Proficiency with enterprise-grade and open-source penetration testing tools. - Excellent problem-solving skills, leadership capabilities, and report-writing proficiency. Please note that the preferred certifications for this role include OSCP, CREST, GPEN, GXPN, Cloud Certifications, or their equivalents. (Note: The additional details of the company were not provided in the job description.),