Security Analyst

Job description

As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices.

Key Responsibilities:

• Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients IT infrastructure, applications, and networks.
• Conduct thorough security assessments using industry-standard tools and methodologies, including but not limited to, Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
• Identify and exploit security vulnerabilities to assess the potential impact on clients systems and data.
• Prepare detailed assessment reports outlining findings, risk levels, and recommended remediation measures.
• Collaborate with clients IT teams to prioritize and address identified security issues in a timely manner.
• Develop and implement custom scripts or tools to enhance testing capabilities and automate repetitive tasks.
• Stay abreast of emerging security threats, vulnerabilities, and industry best practices to continually improve testing methodologies.
• Provide guidance and mentorship to junior security engineers, fostering a culture of knowledge sharing and skill development within the team.

Requirements:

• Bachelor's degree in Computer Science, Information Technology, or related field.
• 3 years of experience in cybersecurity, with a focus on Vulnerability Assessment and Penetration Testing.
• Proficiency in using tools such as Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
• Hands-on experience with various operating systems, including Windows, Linux, and Unix.
• Strong understanding of network protocols, web application architecture, and common security vulnerabilities.
• Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or similar certifications preferred.
• Excellent analytical skills and attention to detail, with the ability to prioritize and manage multiple tasks effectively.
• Effective communication skills, both verbal and written, with the ability to convey technical concepts to non-technical stakeholders.
• Proven track record of delivering high-quality security assessments and actionable recommendations.