Vulnerability Management & Penetration Testing Engineer

Teamware Solutions

4 - 5 years

4 - 7 Lacs

Chennai Tamil Nadu India

Posted:2 weeks ago| Platform: Foundit logo

Apply

Skills Required

OWASP ZAP

Work Mode

On-site

Job Type

Full Time

Job Description

Key Responsibilities:

Vulnerability Management:

Conduct regular
vulnerability assessments
using tools such as
Tenable Nessus
,
Qualys
,
Rapid7
, or similar.
Analyze vulnerability scan results and collaborate with IT and DevOps teams for timely remediation.
Prioritize vulnerabilities based on risk level, exploitability, and business impact.
Track and report remediation efforts, providing status updates to stakeholders.
Maintain up-to-date knowledge of known vulnerabilities and emerging threats (e.g., CVEs).

Penetration Testing:

Perform
penetration tests
on applications, systems, networks, and cloud environments.
Simulate real-world attacks to evaluate the effectiveness of security controls.
Document findings and create detailed reports with actionable remediation guidance.
Conduct retesting after fixes to validate security improvements.
Use manual and automated testing tools (e.g.,
Burp Suite
,
Metasploit
,
Nmap
,
Kali Linux
,
OWASP ZAP
).

Qualifications and Requirements:

Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field.
3+ years of experience in
vulnerability management
and
penetration testing
.
Hands-on experience with industry-standard tools such as
Nessus
,
Burp Suite
,
Nmap
,
Metasploit
,
Qualys
, etc.
Familiarity with CVSS scoring, threat modeling, and risk assessment frameworks.
Deep understanding of network protocols, web application architecture, and secure coding practices.
Strong communication skills to deliver clear and actionable vulnerability reports.

Desirable Skills and Certifications:

Security certifications such as:
OSCP (Offensive Security Certified Professional)
CEH (Certified Ethical Hacker)
GPEN (GIAC Penetration Tester)
CISSP
,
Security+
, or
CRTP
Experience with
cloud security
and tools like AWS Inspector, Azure Security Center, or GCP SCC.
Knowledge of
SIEM
platforms and threat intelligence feeds.
Familiarity with secure DevOps (DevSecOps) practices and CI/CD pipeline integration.

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.