Job
Description
We are looking for a skilled Security Consultant / Senior Security Consultant with expertise in penetration testing to join our team. The ideal candidate will have 3-9 years of experience. ### Roles and Responsibility Lead engagements from kickoff with clients through scoping, penetration testing, and reporting while adhering to the agreed scope and deadlines. Perform penetration testing including network, web application, mobile app (Android & iOS), APIs, cloud security, thick client applications, wireless, social engineering, physical penetration testing, and red team assessments. Execute penetration testing projects using established methodology, tools, and rules of engagement. Identify and exploit security vulnerabilities in various systems. Conduct in-depth analysis of penetration testing results and create reports describing findings, exploitation procedures, risks, and recommendations. Convey complex technical security concepts to both technical and non-technical audiences, including executives. Utilize tools such as BurpSuite, Nessus, Nmap, Kali Linux, and Nessus for effective vulnerability assessment and penetration testing. Stay up-to-date with the latest techniques and concepts, including Active Directory attacks. Support SDLC and agile environments with application security testing and source code reviews. Serve as a mentor and guide to junior pen testers, sharing knowledge, skills, and best practices to foster their growth and development. Provide technical expertise and guidance to clients on remediation strategies and security best practices. ### Job Requirements BE/ B.Tech/ MCA or equivalent degree. Minimum 3 years of work experience in penetration testing, including at least three of the following: network, web application, mobile app (Android & iOS), thick client, APIs, wireless, social engineering, physical, and red team assessments. One of the following certifications: OSCP, OSCE, OSEP, OSWE, CREST, CRTE, eCPTX, or eWPTX. Knowledge of Windows, Linux, UNIX, and other major operating systems. Strong understanding of security principles, policies, and industry best practices. Proven ability to lead client engagements, build strong client relationships, and deliver exceptional results. Excellent communication and presentation skills, both written and verbal. Demonstrated thought leadership in cybersecurity through publications, speaking engagements, or contributions to industry forums. Exceptional problem-solving skills, strategic thinking, and the ability to influence and lead. Familiarity with OWASP methodologies and application security vulnerabilities. Exceptional ability to educate and guide application developers in security best practices. Excellent communication, presentation, and interpersonal skills. Strong Word, Excel, and PowerPoint skills.
