Senior Cyber Security Analyst (Penetration Testing)

Cloud Raptor is Hiring for MNP SPARK Bengaluru!

Work Location:

Engagement:

Client:

MNP is one of Canadas largest full-service chartered professional-services firms providing accounting, tax, consulting, risk-advisory, management consulting, and financial advisory services.

• With offices across all provinces and a workforce of thousands, MNP serves clients in public, private, and not-for-profit sectors across Canada.
• MNP emphasizes a culture of balanced lifestyle, competitive compensation and benefits, merit-based career growth, and values that support diversity, inclusion, community, and work-life balance.

Role & responsibilities

Responsibilities

• Lead and execute comprehensive Red Team engagements, simulating persistent and stealthy threat actors to assess detection and response
  
• Perform network, web application, API, wireless, Active Directory, and Cloud (Azure/AWS/GCP) penetration tests
  
• Develop and utilize custom scripts, exploits, and tools in languages such as Python, PowerShell, or Bash
  
• Emulate attacker tactics, techniques, and procedures (TTPs) in alignment with MITRE ATT&CK and threat intelligence
  
• Conduct assumed breach and Purple Team exercises, working closely with the Blue Team to tune detection and improve visibility
  
• Provide detailed technical reports, risk ratings, and mitigation recommendations for executive and technical stakeholders
  
• Contribute to the design of offensive security roadmaps, methodology frameworks, and internal tooling libraries
  
• Stay current on emerging threats, vulnerabilities, and security research
  
• Integrate security testing into the development life cycle and CI/CD pipelines using DAST and SAST tools
  
• Collaborate with development teams to ensure secure coding practices and application security architecture
  
• Manage External Attack Surface Management (EASM) by identifying, monitoring, and mitigating risks associated with external-facing assets
  

Skills:

• Familiarity with penetration testing tools like Burp Suite, Nmap, Metasploit, and BloodHound
  
• Basic to intermediate experience with scripting languages (e.g., Python, Bash, or PowerShell)
  
• Foundational knowledge of networking, OS internals, and common attack vectors
  
• Exposure to cloud environments and security assessments (Azure, AWS, or GCP) are considered an asset
  

Preferred candidate profile

• Bachelor Or Master in Technology

• Bachelor Or Master of Computer Applications

Certifications

• Certifications such as OSCP, eJPT, CRTO, or CEH are considered an asset
  

Experience:

• 7+ years of experience in penetration testing, security assessments, or offensive security