Job Location - Thane, India
Immediate Joining is preferred.
Job Description
We are looking for a skilled professional to join our organisation as a Junior Security Consultant. This position will be responsible for Vulnerability Assessment and Penetration Testing activities of clients web applications. Roles & Responsibilities
Key Responsibility
- Support remediation effort and track open issues to ensure remediation.
- Follow up on the closure of identified gaps and utilise the escalation matrix effectively wherever necessary.
- Perform regular audits to ensure security practices are compliant.
- Evaluate and implement new technologies while keeping in view the cybersecurity risks, technology risks and regulatory compliance.
- Keep abreast with new technologies to ensure that the organisation remains at the forefront of security.
- Research and maintain proficiency in computer network exploitation, tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding, network security, and encryption.
Requirements
- In-depth knowledge of security issues, exploitation techniques and remediation measures.
- Hands-on Experience in Vulnerability Assessments & Penetration Testing (Automated + Manual) on business-critical assets.
- Hands-on experience with well-known security tools like BurpSuite, Nessus, Nmap, Accunetix, Metasploit, Netsparker, Qualys etc.
- In-depth understanding on Common Vulnerability Exposure (CVE) and CWE.
- Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions (proxy, web filtering).
- Perform in-depth analysis of VAPT results, ability to review assessment reports to provide risk mitigation & recommendations on that basis.
- Familiarity with OWASP Top 10, SANS Top 25 vulnerabilities along with its validations in source code and other security frameworks & Compliance.
- Good understanding of technologies such as Cloud security and recent trends.
Desired Candidate Profile
- Engineering Graduate in CS, IT, EC or InfoSec, Cyber Security or MCA equivalent.
- Certifications Preferred: eJPT, CEH.
- Strong organisational, teamwork, multitasking & time management skills.
- Relevant experience: 1.5+ years
- Outstanding communication abilities. Ability to effectively communicate the required solutions.
- Ability to work under pressure & in a fast-paced environment.
- Strong attention to detail, an analytical mindset & outstanding problem-solving skills.
- Sound knowledge of MITRE ATT&CK and D3FENCE framework.
- Keen awareness of cybersecurity trends & attacking techniques.
