Your key responsibilities:
Perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing.
Execute red team scenarios to highlight gaps impacting organizations security postures.
Ability to work both independently as well as lead a team of technical testers on penetration testing and red team engagements.
Provide technical leadership and advise to junior team members on attack and penetration test engagements.
Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations.
Perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations.
Execute penetration testing projects using the established methodology, tools and rules of engagements.
Convey complex technical security concepts to technical and non-technical audiences including executives.
Develop and maintain productive working relationships with client personnel
Build strong internal relationships within EY Advisory Services and with other service lines across the organization.
To qualify for the role, you must have
Graduates /BE / M Sc (Stats, Maths, Computer Science) / MBA with background in computer science and programming /MCA with minimum 8 years of work experience in penetration testing which includes internet, intranet, web application penetration tests, wireless, social engineering, and Red Team assessments.
Any two of the following certifications: CISSP, OSCP, OSWP, GPEN, GWAPT, OSCE, OSEE, GXPN Network Security certifications (C|EH, Security+, SANS, ISACA, product certifications).
Quality Management training/certification (e.g. ITIL, Six Sigma, TQM)
Knowledge of Windows, Linux, UNIX, any other major operating systems.
Deep understanding of TCP/IP network protocols.
Deep understanding and experience with various Active Directory attack techniques.
Understanding of network security and popular attacks vectors.
An understanding of web-based application vulnerabilities (OWASP Top 10).
Experience with manual attack and penetration testing.
Experience with scripting / programming skills (e.g., Python, PowerShell, Java, Perl etc.).Updated and familiarized with the latest exploits and security trends.
Experience to lead a technical team to conduct remote and on-site penetration testing within defined rules of engagement.
Familiarity to perform network penetration testing in stealth manner.
Understanding of software security, network security, and information technology management technologies and principles
Knowledge of vulnerability management, patch management, and configuration management best practice
Ideally, you’ll also have
Project management skills
Certifications: CREST
Demonstrable flair for technical writing, including engagement reports, presentations and operating procedures
What we look for
Who can perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing and provide analysis for the testing results.
--
You must verify your mobile number to apply to this job.