Job
Description
About HackIT HackIT Technology and Advisory Services is an IT / Cyber Security company, operating since 2009. HackIT is an Indian Computer Emergency Response Team, CERT-IN (www.cert-in.org.in) empaneled provider for IT Security Audit Services. HackIT provides a broad range of security consulting and advisory services to a diverse group of clients, including government organizations, corporations, Military establishments, financial institutions and start-up, to name few. Our work spans multiple sectors and industries, including Telecommunications, Defense and Military, ITeS, Financial Services, Aviation, Hospitality, Healthcare and Research. We work end-to-end—from diagnosis to delivery of lasting impact — together generating tangible results that are improving the security posture of organizations worldwide. Job Title : Security Analyst (VA/PT) (Web / Mobile / Thick Client Application) Location : Kochi Job Overview : We are seeking a Security Analyst (VA/PT) to join our dynamic Security Testing team in performing security testing of applications, networks and infrastructures, including vulnerability assessments, penetration testing and manual testing techniques. Job Responsibilities : Hands-on role that also requires client interaction on a regular basis. Manual and automated security testing of Web applications, APIs, and Mobile Applications. Static and Dynamic testing (SAST & DAST) of thick clients / applications Develop Proof-of-Concept (PoC) for the identified vulnerabilities. Provide remediation guidance to identified vulnerabilities. Develop and execute security testing project plans. Incorporate metrics providing comprehensive insight about the security posture of an organization that will help senior management with decision making. Build and maintain strong relationships with key stakeholders. Technical Skillsets (Mandatory) : Hands on experience in Penetration Testing Strong analytical and problem-solving skills and the ability to explain complex technical concepts in a clear and concise manner and to provide remediation recommendations. Knowledge of / or experience with both Enterprise and open source offensive security tools for reconnaissance, scanning, exploitation Sound understanding of security frameworks (OWASP Top 10, NIST, MITRE ATT&CK). Technical Skillsets (Preferred) : Proficiency in a programming language(s) (e.g. Python, Ruby, Perl, PowerShell) Exposure to DevSecOps, Security Architecture review and Network Security assessment would be a bonus. Hands-on experience in Red Team Exercises, Threat Hunting, OSINT and Threat Modelling Job Types: Full-time, Permanent Pay: ₹300,000.00 - ₹600,000.00 per year Benefits: Cell phone reimbursement Health insurance Internet reimbursement Leave encashment Paid sick time Paid time off Provident Fund Schedule: Day shift Monday to Friday Work Location: In person
