Responsibilities:
Perform comprehensive security testing, including Vulnerability Assessment and Penetration Testing, on web applications, mobile applications, and APIs.
Identify and exploit vulnerabilities in applications and systems to assess their potential impact.
Ensure the effective implementation of security controls and measures in line with identified risks.
Prepare detailed assessment reports outlining identified vulnerabilities, risks, and recommendations for remediation.
Maintain accurate and detailed records of tests conducted and document the results.
Conduct in-depth discussions with clients to explain the assessment reports and provide guidance on implementing remediation measures.
Stay updated with the latest security vulnerabilities, attack techniques, and industry best practices by conducting passionate research and continuous learning.
Possess platform-specific testing experiences, such as VAPT of AWS, Azure, or other cloud platforms.
Required Experience & Qualifications
Computer Science Graduate or Equivalent Degree Knowledge of programming language, Application security engineering.
Experience level 0 - 2 years and above, role is Individual contributor.
Certifications like Certified Ethical Hacker (CEH), CPENT (Certified Penetration Testing Professional) Offensive Security Certified Professional (OSCP), or similar are highly desirable.
Preferred Skills & Knowledge
Solid hands-on experience in performing security testing, including Vulnerability Assessment and Penetration Testing, on web applications, mobile applications, and APIs.
Strong knowledge of common web application vulnerabilities (e.g., OWASP Top 10) and mobile application security best practices.
Familiarity with security tools and frameworks used in penetration testing, such as Burp Suite, OWASP ZAP, Kali Linux, etc.
Knowledge of Common Weakness Enumeration (CWE) Common Vulnerabilities and Exposures (CVE) and remediation recommendations
Excellent understanding of network protocols, operating systems, and application architectures.
Ability to analyze and interpret assessment results and provide meaningful recommendations for remediation.
Strong communication skills, both written and verbal, to effectively convey assessment findings to clients and engage in technical discussions.
Experience with platform-specific testing, such as VAPT of AWS, Azure, or other cloud platforms, would be an added advantage.
Most importantly, Self-motivated, detail-oriented, and a continuous learner with a passion for Cybersecurity.
Strong expertise in application security concepts and activities like Source Code Review (SAST) & Dynamic application vulnerability scanning (DAST).
Prefer to have hands-on experience with commercial and open-source tools e.g Burp suite Professional, Metasploit, Checkmarx, Postman, SQLMAP, etc,
--
You must verify your mobile number to apply to this job.