Security Penetration Testing

Good to have skills :

Summary:
As a Security Architect, you will design and implement comprehensive testing strategies to assess the security posture of web applications, APIs, and infrastructure. Your day-to-day responsibilities will involve working closely with cross-functional teams to identify potential vulnerabilities, document findings, and ensure that robust security controls are in place. You will play a critical role in aligning penetration testing activities with organizational goals, making certain that all identified risks are addressed effectively and that best practices in security testing are consistently applied.

Roles & Responsibilities:
• Perform security testing on web applications, APIs, and infrastructure to identify vulnerabilities and weaknesses.• Conduct penetration testing, vulnerability assessments, and security audits.• Develop and execute test plans, scripts, and scenarios to simulate real-world attacks.• Perform infrastructure penetration testing, including SSH and network devices.• Collaborate with development and operations teams to remediate identified vulnerabilities.• Provide detailed reports on findings, including risk assessments and recommendations for mitigation.• Stay up to date with the latest security trends, tools, and techniques.• Assist in the development and implementation of security policies and procedures.

Professional & Technical Skills:
Qualifications:• Bachelor's degree in Computer Science, Information Security, or a related field.• Proven experience in security testing, penetration testing, and vulnerability assessments.• Strong knowledge of web application security, API security, and infrastructure security.• Familiarity with common security tools and frameworks (e.g., OWASP, Burp Suite, Metasploit, Nessus, Kali Linux, Qualys, Wireshark, Nmap, etc).• Excellent problem-solving skills and attention to detail.• Strong communication skills, both written and verbal.• Relevant offensive security certifications (e.g., OSCP, OSCE, eJPT, CRTP) are a plus.• Knowledge about scripting languages such as Python, Bash, or PowerShell for automating tasks and developing custom security tools.

Preferred Skills:
• Experience with cloud pentesting (e.g., On-Premises, AWS, Azure, GCP).• Experience with On-Premises Cloud Infrastructure Pentesting.• Knowledge of secure coding practices and code review.• Understanding of network security and protocols.• Ability to work independently and as part of a team.

Additional Information:
- The candidate should have minimum 5 years of experience in Security Penetration Testing.- This position is based at our Bengaluru office.- A 15 years full time education is required.