Job Duties include:
Create technical assessments which details the vulnerabilities, steps to reproduce, and recommendations for remediation
Coordinate with stakeholders to complete test plans, bug details, and final report for each project.
Recommend technical mitigations for device and systems development teams
Research, evaluate, document, and discuss findings with project teams and management
Pinpoint methods and entry points that attackers may use to exploit vulnerabilities
Recommend improvements for hardware, software, policies, and procedures
Provide security guidance and input to engineering teams during design review and threat modeling
Stay updated on the latest malware and security threat
Required Skills & Abilities:
Knowledge of IoT systems and technologies (device, cloud, mobile, web)
Good understanding of cloud vulnerabilities
Should have exposure to Code review.
Knowledge of security protocols and principles.
Ability to use security testing tools, such as Burp Suite, Nmap, Nessus
Mobile and web development experience
Exceptional problem-solving skills
Excellent verbal and written communication skills
Excellent interpersonal skills
Conduct research to identify potential attack.
Ability to work both independently as well as lead a team of technical testers on penetration testing assessments.
Certification in a related discipline, such as OSCP, OSWP, GPEN, GWAP or CEH
Desired Skills & Abilities:
Strong programming skills in these programming languages: Python, C#, ObjectiveC, Swift, android, angular, C or C++,Kali,Frida,MobSF, Wireshark
Strong scripting skills
Experience with static and dynamic code analysis
Experience fuzzing applications and protocols
Experience threat modeling IoT products, cloud infrastructure, microservices, etc.
Knowledge of securing infrastructure on one or more cloud providers (AWS, GCP, Azure)
Assists in the development of the strategic positioning of security systems within the Company environment.
Educates and trains staff on information system security best practices.
Network protocol analysis (ARP / ICMP / TCP / UDP / HTTP / HTTPS/ Zigbee/ MQTT using TCP dump or Wireshark)
Education:
BE or M Tech in Computer Science & Engineering / Computer & Information Science
Experience:
6 to 10 Years’ experience in penetration testing, security review, analysis, and reporting.
--
You must verify your mobile number to apply to this job.