SOC Engineer

We are looking for an enthusiastic and detail-oriented Manual Penetration Tester to join our security

team. This is an entry-level role ideal for candidates who have strong curiosity about cybersecurity,

hands-on learning mindset, and basic understanding of offensive security techniques. You will work

with senior security engineers to identify vulnerabilities, perform manual assessments, and help

strengthen the security posture of our applications and infrastructure.

Key Responsibilities

• Perform manual penetration testing on web applications, APIs, mobile apps, networks, and cloud environments under supervision.
• Identify, analyze, and validate security vulnerabilities (OWASP Top 10, SANS 25, misconfigurations, etc.).
• Assist in preparing detailed vulnerability reports, PoCs, and remediation recommendations.
• Re-test vulnerabilities after fixes and collaborate with engineering teams for closure.
• Participate in internal security reviews and threat modeling exercises.
• Stay updated on emerging threats, exploits, and security tools.

Required Skills (Basics Expected)

• Understanding of networking fundamentals, HTTP/HTTPS, DNS, OS basics (Linux/Windows).
• Familiarity with OWASP Top 10, common attack vectors, and web security principles.
• Basic exposure to tools like:

Burp Suite (manual testing)

Nmap

Nikto

Linux CLI

• Knowledge of manual techniques such as input validation testing, authentication/authorization bypass attempts, IDOR checks, etc.
• Good analytical thinking and documentation skills.

Who Should Apply

• Fresh graduates passionate about cyber security.
• Candidates who enjoy breaking systems ethically and solving security challenges.
• Individuals with strong learning attitude and problem-solving mindset.
• Hands-on projects, labs, or CTF participation (TryHackMe, HackTheBox, PortSwigger Academy).
• Any certification like eJPT, CEH, Security+, CPT, or self-learning security course.
• Scripting knowledge (Python/Bash) is a plus but NOT mandatory.