Job
Description
Experience Level : 3 Years Position Overview : We are seeking a skilled VAPT Engineer with 3 years of experience to join our dynamic cybersecurity team. The ideal candidate will have a strong background in vulnerability assessment and penetration testing, with a keen eye for identifying security risks and implementing effective solutions. Hands-on experience in identifying and exploiting vulnerabilities in web applications, APIs, and mobile platforms. Thorough knowledge of cloud security (AWS, Azure, GCP) and proper understanding of secure development life cycle (SDLC) practices is a must. Key Responsibilities: Vulnerability Assessment : Perform regular vulnerability scans on applications, networks, and systems. Identify, analyze, and classify security vulnerabilities. Penetration Testing : Conduct penetration tests to simulate cyberattacks and assess system security. Exploit vulnerabilities to validate their impact. Reporting : Prepare detailed vulnerability assessment and penetration testing reports. Provide actionable recommendations to mitigate risks. Compliance and Standards : Ensure adherence to industry standards (OWASP, SANS, NIST, etc.). Support compliance with frameworks like ISO 27001, PCI DSS, GDPR, etc. Collaboration : Work closely with development, IT, and security teams to remediate vulnerabilities. Provide guidance on secure coding practices and system hardening. Continuous Improvement: Stay updated on OWASP Top 10 and CWE/SANS 25 vulnerability categories. Stay updated on the latest security trends, tools, and techniques. Recommend enhancements to existing security protocols. Tool Expertise : Use tools such as Nessus, Burp Suite, Metasploit, Kali Linux, Qualys, and others for VAPT activities. Qualifications : Bachelor s degree in Computer Science, Information Technology, or a related field (preferred but not compulsory) 3 years of experience in Vulnerability Assessment and Penetration Testing. Strong understanding of network protocols, operating systems, cloud infrastructure and web applications. Excellent problem-solving skills and attention to detail. Relevant certifications such as CEH, OSCP, or CISSP, GIAC Certified Penetration Tester (GPEN) or Offensive Security Experienced Penetration Tester (OSEP) are a plus Strong communication skills Written & Verbal in English language Ability to work collaboratively in a team environment is a must
