Job Description

Requirements:

• Experience with incident detection, incident response, and forensics.
• Core experience and profound knowledge in application and infrastructure security testing.
• Strong understanding and hands on experience on application and infrastructure vulnerabilities, automated/manual testing, auditing and remediation techniques
• Strong understanding of OWASP, WASC 2.0 Threats classification
• Strong understanding of cryptography
• Experience with standard security tools such as Metasploit, SQLMap, Nmap, OWASP ZAP, Burp Suite etc.
• Experience with network/infrastructure vulnerability assessment tools such as Nessus, Qualys etc.
• Experience with establishing penetration testing procedures and processes.
• Experience with Firewalls (functionality and maintenance), Office 365 and Endpoint Security.
• Proficiency in any one of the scripting languages like Python, C++, Java, Ruby, Node, Go, and/or Power Shell
• Ability to work under pressure in a fast-paced environment.
• Strong attention to detail with an analytical mind and outstanding problem-solving skills.
• Great awareness of cybersecurity trends and hacking techniques.
• Understanding of server and client-side application development.
• Experience with performing code review, wireless and firewall assessments.
• Technical knowledge in network security products, cryptographic suites and network/application firewalls.
• Experience in evasion techniques to bypass firewalls and intrusion detection systems.
• Experience with Mobile Application Penetration testing, APIs etc.
• Knowledge in Application Architecture Review, Threat Modelling concepts
• Security Certifications: OSCP, OSEE, OSCE etc.