Job
Description
Perform Network Security Assessments, including vulnerability scans, penetration testing, and firewall rule reviews. Conduct Web Application Security Testing using industry-standard tools and methodologies (OWASP Top 10). Execute Mobile Application Security Testing on Android and iOS platforms to identify security vulnerabilities. Assess Data Lake Security configurations on AWS and Azure cloud environments, including S3, Glue, Athena, Azure Data Lake Storage, and other data pipeline components. Collaborate with DevOps teams to integrate security testing into CI/CD pipelines. Perform Cloud Security Assessments across AWS and Azure environments, including IAM, network configurations, and storage security. Document vulnerabilities, risks, and recommendations in detailed security assessment reports. Provide guidance on security best practices and remediation steps. Stay updated with emerging security threats, vulnerabilities, and technologies. Required Skills: Hands-on experience with Vulnerability Assessment & Penetration Testing (VAPT) tools such as Burp Suite, Nessus, Qualys, and Metasploit. Proficiency in Web Application Security Testing methodologies and tools. Experience in Mobile App Security Testing (Android & iOS) using tools like MobSF, Drozer, or manual techniques. Strong understanding of AWS Security Services (IAM, S3, CloudTrail, GuardDuty, KMS) and Azure Security Services (Azure AD, Defender for Cloud, Storage security). Knowledge of Data Lake Security best practices, including encryption, access control, and logging. Familiarity with API Security Testing. Understanding of Compliance Standards such as ISO 27001, GDPR, and SOC Experience with scripting languages like Python, Bash, or PowerShell for automation. Nice-to-Have Skills: Certifications like CEH, OSCP, AWS Security Specialty, Azure Security Engineer Associate. Knowledge of Infrastructure as Code (IaC) security scanning tools (e.g., Checkov, Terrascan). Experience with DevSecOps pipelines. Exposure to SIEM and threat detection tools.
