5 Pen Testing Jobs

Who are we looking for? Focused on the customer, Managed Services' mission is to ensure that clients get the most out of Checkmarx Products and Solutions. We are looking to grow our team with a talented Application Security Architect to support Checkmarx services and our customers. We are looking for a resilient and self-motivated individual who wants to be part of an expanding team in a fast-growing industry. Responsibilities : Review customers software architectures with a focus on potential security threats Provide dev teams with explanation and mitigation advice for security vulnerabilities found in the Checkmarx scans; Design and coordinate the implementation and maintenance of tailored solutions that will meet customer requests, needs and requirements; Collaborate with Product Management, R&D and Support teams in handling customer issues or internal Checkmarx initiatives; Occasionally assist in pre-sale activities, like providing product demonstrations; Assistance in the implementation of Application Security Programs and processes; Providing training for developers and management Travel to customer sites for meetings and technical activities; Requirements Degree in Software Engineering or equivalent At least 4+ years of combined experience in development, in any programming language,and Application Security (minimum 2 years in AppSec). Previous experience in one or more Application Security practices, such as pen-testing, security code review, AST products, research Knowledge on how to conduct a Threat Modeling exercise. Knowledge of AppSec industry standards, frameworks and guidelines, such as OWASP Top 10 (Web, Api or Mobile) and Secure SDLC. Client handling skills for Security Engagements; Good written and verbal communication skills in English; Ability to travel (up to 20%); Pro-active and sense of ownership; Get an advantage if you have Security Certifications (CISSP, CSSLP, CEH, OSCP, etc.).

Technical Skills, Experince & Qualification Required :- 4-6 yrs of Experience into Pentest, Pen tester / Pen testing Manual Pentesting of web application, infrastructure, mobile app Extensive knowledge in the areas of information system security Coding ability (at the very least Python) Recognized credential on a hacking platform: training (HTB, root-me, etc.) or bug bounty (synack, hackerone, etc.) Experience in relevant tools : Burp Suite or equivalent, network discovery, vulnerability scanner, OSINT, exploitation and post-exploitation on web app, OS, infra and mobile application, payload customization, virtualization. Deep knowledge in manual web application penetration testing and payload customization Expertise in at least one programming language Experience in working on Linux and Windows environment Cloud environment testing (AWS, Azure) Certifications Required : Offensive security : OSWE, OSCE, OSCP, OSWP, OSEE certification EC-Council certification (APT, LPT, not CEH) Government sponsored certification : CREST, PASSI PCI DSS certification ISO 27001 certification SANS or equivalent certification Immediate Joiners will be preferred

Job Summary: Works on problems of diverse scope where analysis of data requires evaluation of identifiable factors De Demonstrates good judgment in selecting methods and techniques for obtaining solutions. Ne Networks with senior internal and external personnel in own area of expertise. Supervision - Normally receives little instruction on day-to-day work, general instructions on new assignments. Experience with vulnerability exploit techniques and tools. - Ability to setup, configure and utilize ethical hacking tools and exploits. Ab Ability to develop exploits and demonstrate impacts to others Proficient in research and analysis of security intelligence data, system/application/network configurations and logs Ab Ability to understand and execute complex analysis of intelligence data as well as systems/application/network configurations and logs to determine preliminary threats, targets and evaluate risk appropriately. Ab Ability to apply controls to safely traverse the dark web for research purposes. Experience with activities involving APT Threats - Ability to describe various tools, techniques, and procedures (TTPs) associated with threat actors known to operate in the financial services domain.

Principal Software Engineer - IT The Software Engineering team delivers next-generation software application enhancements and new products for a changing world. Working at the cutting edge, we design and develop software for platforms, peripherals, applications and diagnostics all with the most advanced technologies, tools, software engineering methodologies and the collaboration of internal and external partners. Join us to do the best work of your career and make a profound social impact as a Principal Software Engineer - IT on our Information Security Technology Team in Bangalore What youll achieve In this position, as a Principal Software Engineer - IT , youll be responsible for developing tools and automation used internally to maintain and enhance Dell's information security posture. You will work with global security and software development teams on projects to enhance Dells infrastructure and vulnerability remediation processes."Dell provides the technology that transforms the way we all work and live and always including Information Security as a very important aspect in everything we do. You will: Implement automated vulnerability remediation strategies using modern technologies like Python, Java and infrastructures tools like SCCM, Tenable, AWS, and so on Work with IT and Cybersecurity partners to establish communication plans and develop remediation solutions. Develop effective strategies to orchestrate vulnerability remediation. Provide critical input into the selection, configuration, and implementation of new and existing solutions. Essential Requirements 9-12 years of experience in software developmentwith hands-on experience using Java, Angular, React.js, and Spring Boot frameworks. Strong foundation in secure development life cycle, scripting including expertise in Linux shell scripting, Python, and Windows PowerShell. Skilled in writing and optimizing SQL queriesfor data retrieval and manipulation. Experienced in implementing and maintaining CI/CD pipelineswithin DevOps environments. Experience developing Web UI (front end) applications Desirable Requirements Knowledge of Information security topics such as Cybersecurity, Pen testing and vulnerability scan, Application security, Web security, CVSS Scoring, CVE classification. 8+ years of validated experience.Bachelors degree in computing engineering or computer science

Technical Skills, Experince & Qualification Required :- Manual Pentesting of web application, infrastructure, mobile app Extensive knowledge in the areas of information system security Coding ability (at the very least Python) Recognized credential on a hacking platform: training (HTB, root-me, etc.) or bug bounty (synack, hackerone, etc.) Experience in relevant tools : Burp Suite or equivalent, network discovery, vulnerability scanner, OSINT, exploitation and post-exploitation on web app, OS, infra and mobile application, payload customization, virtualization. Deep knowledge in manual web application penetration testing and payload customization Expertise in at least one programming language Experience in working on Linux and Windows environment Cloud environment testing (AWS, Azure) Certifications Required : Offensive security : OSWE, OSCE, OSCP, OSWP, OSEE certification EC-Council certification (APT, LPT, not CEH) Government sponsored certification : CREST, PASSI PCI DSS certification ISO 27001 certification SANS or equivalent certification Immediate Joiners will be preferred