Job
Description
About The Role
Project Role :Security Architect
Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :Security Penetration Testing
Good to have skills :NA
Minimum 5 year(s) of experience is required
Educational Qualification :15 years full time education
Summary:As a Security Pentester, you will design and implement comprehensive testing strategies to assess the security posture of web applications, APIs, and infrastructure. Your day-to-day responsibilities will involve working closely with cross-functional teams to identify potential vulnerabilities, document findings, and ensure that robust security controls are in place. You will play a critical role in aligning pentesting activities with organizational goals, making certain that all identified risks are addressed effectively and that best practices in security testing are consistently applied.Roles & Responsibilities:¢"¢Perform security testing on web applications, APIs, and infrastructure to identify vulnerabilities and weaknesses.¢"¢Conduct penetration testing, vulnerability assessments, and security audits.¢"¢Develop and execute test plans, scripts, and scenarios to simulate real-world attacks.¢"¢Perform infrastructure pentesting, including SSH and network devices.¢"¢Collaborate with development and operations teams to remediate identified vulnerabilities.¢"¢Provide detailed reports on findings, including risk assessments and recommendations for mitigation.¢"¢Stay up-to-date with the latest security trends, tools, and techniques.¢"¢Assist in the development and implementation of security policies and procedures.¢"¢Provide specialised knowledge and guidance in your area of expertise, acting as a resource for team members seeking advice or solutions to complex problems.¢"¢Organise tasks, facilitate effective communication, and encourage collaboration among team members to help drive results and achieve set objectives efficiently.¢"¢Take responsibility for the outcomes of decisions made by the team, ensuring transparency and learning from successes or setbacks to continuously improve future decision-making processes.Professional & Technical
Skills:
Qualifications:¢"¢Bachelor's degree in Computer Science, Information Security, or a related field.¢"¢Proven experience in security testing, penetration testing, and vulnerability assessments.¢"¢Strong knowledge of web application security, API security, and infrastructure security.¢"¢Familiarity with common security tools and frameworks (e.g., OWASP, Burp Suite, Metasploit, Nessus, Kali Linux, Qualys, Wireshark, nmap, etc).¢"¢Excellent problem-solving skills and attention to detail.¢"¢Strong communication skills, both written and verbal.¢"¢Relevant offensive security certifications (e.g., OSCP, OSCE, eJPT, CRTP) are a plus.¢"¢Knowledge about scripting languages such as Python, Bash, or PowerShell for automating tasks and developing custom security tools.Preferred
Skills:¢"¢Experience with cloud pentesting (e.g., On-Premises, AWS, Azure, GCP).¢"¢Experience with On-Premises Cloud Infrastructure Pentesting.¢"¢Knowledge of secure coding practices and code review.¢"¢Understanding of network security and protocols.¢"¢Ability to work independently and as part of a team.Good to Have:¢"¢Conduct telecom risk assessments on core and access network nodes (e.g., Voice core, packet core, radio, IMS, 5G Core, fixed line).¢"¢Demonstrate cybersecurity knowledge for mobile and fixed networks (2G-5G, IMS, VoLTE).¢"¢Understand telecom protocols¢-Diameter, SIP, SS7, GTP, SCTP.¢"¢Familiarity with standards:3GPP, GSMA NESAS, ISO 27001, NIST, and local regulations.¢"¢Perform penetration testing on telecom infrastructure and services.¢"¢Contribute to security hardening using industry best practices (3GPP, GSMA NESAS, NIST).
Additional Information:¢"¢The candidate should have a minimum of 5 years of experience in Security Penetration Testing.¢"¢This position is based at our Gurugram office.¢"¢A 15 years full time education is required. Qualification 15 years full time education
