Role and Responsibilities: Perform periodically system and application VAPT (Vulnerability Assessment and
Penetration Testing) using automated and manual approach Perform asset and network discovery activities, helping ensure full coverage of thevulnerability discovery. Prioritizing remediation activities with operational teams through risk ratings ofVisit us: www.sisainfosec.com Emailresume to: careers@sisainfosec.comvulnerabilities and asset Identify and test vulnerabilities in the areas of the information system and networkssecurity. Conduct and compile findings on new vulnerabilities, new tools for departmentaluse Create project deliverables /reports and assist the immediate supervisor duringsubmissions and client discussions Performing assessment related to Red Teaming, Network Penetration Testing, WebApplication Penetration Testing, Mobile Application Penetration Testing, Secure Code review, AD SecurityAssessments, Vulnerability Management, Social Engineering Assessments,Wireless Penetration Testing. Required Skills Hands on experience with Vulnerability Assessment and Penetration testing of thick & thin client-based applications, Operating systems, edge devices and firewalls. Research, recommend, evaluate and implement information security solutions that identify and and/ or protect against potential threats, and respond to security violations, misuse of resources or noncompliance situations using defined escalationprocesses Strong Experience of using open-source tools and commercials tools such as but notlimited to Burp Suite, Metasploit, Nessus, Acunetix, Checkmarx, and Nexpose withoperating systems Windows and Linux. Expertise and experience of conducting VAPT (Vulnerability Assessment and Penetration Testing) as per standards such as OWASP Top 10, SANS Top 25 andWASC, NIST. Perform research on new vulnerabilities, attack vectors, exploits, tools and industrytrends services. Provide offsite and on-site consulting services to our customers. Collaborating with other members of the engagement team to plan the engagementand develop work program timelines, risk assessments and other douments/templates. Well familiar with basics of TCP/IP and Networking principles. Extensive Working knowledge of Operating systems: Windows NT/2K3/XP and Linuxor any Unix OS Knowledge about Computer Networks, System Security, Firewalls and Vulnerabilities. Education Requirements
- Bachelor of Engineering (BE) - (CS) / (IS), Bachelor in Computer Application (BCA), Masters in Computer Application (MCA), Masters of Technology (M Tech), Masters
in Computer science and Information Science, Masters in Forensic analysis /
Cyber Security. Certification
CEH/ECSA/CompTia Security+ certification is Desirable. eJpt or any other industryrecognized security certification preferred. Personal Attributes
- Excellent verbal and email Communication Skills
- Ability to effectively handle difficult situations
- Able to prioritize and execute tasks in a high-pressure environment
- Escalation management and De-escalation skill
- Keen attention to detail
- Relationship-Management Skills
Visit us: www.sisainfosec.com Emailresume to: careers@sisainfosec.com
Visit us: www.sisainfosec.com
