Roles & Responsibilities -
- 3-4 years of experience in Pentest, Red Team, offensive security engagements.
- Deep understanding of network, web and API security vulnerabilities and mitigation.
- Good understanding on Active directories and ways of exploitation.
- In-Depth knowledge of Linux operating system.
- Ability to model threats and risks for large and complex systems.
- Good knowledge of IPS/IDS, Firewalls, WAF, Switch and Router.
- Advance knowledge on Authentication, security protocols, Cryptography etc.
- Ability to think critically and identify areas of technical and non-technical risk.
- Ability to write technical reports and communicate technical content to non-technical audiences.
- Relevant security certification i.e. OSCP, OSCE, OSWE, SANS/GIAC, Published CVEs is an added advantage.
- Good understanding and experience in offensive security tools and techniques i.e. Metasploit, Burpsuite, Armitage, MITRE ATT&CK Framework.
- Knowledge in one of the scripting language.
- Has basic knowledge to write exploits for known vulnerabilities
