Job
Description
About The Role
Project Role :Security Architect
Project Role Description :Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations.
Must have skills :Security Penetration Testing
Good to have skills :NAMinimum
7.5 year(s) of experience is required
Educational Qualification :15 years full time education
Summary:As a Security Pentester, you will design and implement comprehensive testing strategies to assess the security posture of web applications, APIs, and infrastructure. Your day-to-day responsibilities will involve working closely with cross-functional teams to identify potential vulnerabilities, document findings, and ensure that robust security controls are in place. You will play a critical role in aligning pentesting activities with organizational goals, making certain that all identified risks are addressed effectively and that best practices in security testing are consistently applied.
Roles & Responsibilities:Perform security testing on web applications, APIs, and infrastructure to identify vulnerabilities and weaknesses.Conduct penetration testing, vulnerability assessments, and security audits.Develop and execute test plans, scripts, and scenarios to simulate real-world attacks.Perform infrastructure pentesting, including SSH and network devices.Collaborate with development and operations teams to remediate identified vulnerabilities.Provide detailed reports on findings, including risk assessments and recommendations for mitigation.Stay up-to-date with the latest security trends, tools, and techniques.Assist in the development and implementation of security policies and procedures.Provide specialised knowledge and guidance in your area of expertise, acting as a resource for team members seeking advice or solutions to complex problems.Organise tasks, facilitate effective communication, and encourage collaboration among team members to help drive results and achieve set objectives efficiently.Take responsibility for the outcomes of decisions made by the team, ensuring transparency and learning from successes or setbacks to continuously improve future decision-making processes.Professional & Technical Skills:
Qualifications:Bachelor's degree in Computer Science, Information Security, or a related field.Proven experience in security testing, penetration testing, and vulnerability assessments.Strong knowledge of web application security, API security, and infrastructure security.Familiarity with common security tools and frameworks (e.g., OWASP, Burp Suite, Metasploit, Nessus, Kali Linux, Qualys, Wireshark, Nmap, etc).Excellent problem-solving skills and attention to detail.Strong communication skills, both written and verbal.Relevant offensive security certifications (e.g., OSCP, OSCE, eJPT, CRTP) are a plus.Knowledge about scripting languages such as Python, Bash, or PowerShell for automating tasks and developing custom security tools.Preferred Skills:Experience with cloud pentesting (e.g., On-Premises, AWS, Azure, GCP).Experience with On-Premises Cloud Infrastructure Pentesting.Knowledge of secure coding practices and code review.Understanding of network security and protocols.Ability to work independently and as part of a team.Good to HaveConduct telecom risk assessments on core and access network nodes (e.g., Voice core, packet core, radio, IMS, 5G Core, fixed line).Demonstrate cybersecurity knowledge for mobile and fixed networks (2G-5G, IMS, VoLTE).Understand telecom protocolsDiameter, SIP, SS7, GTP, SCTP.Familiarity with standards:3GPP, GSMA NESAS, ISO 27001, NIST, and local regulations.Perform penetration testing on telecom infrastructure and services.Contribute to security hardening using industry best practices (3GPP, GSMA NESAS, NIST).
Additional Information:The candidate should have a minimum of 7.5 years of experience in Security Penetration Testing.This position is based at our Gurugram office.A 15 years full time education is required. Qualification
15 years full time education
