Job description
Job Title: Penetration Tester
Location: Chennai (WFO)
Total Years: 12+ Years
Relevant: 6+ Years
Main Skills: Penetration Testing, Mobile App testing & web app testing, OSCP certification preferred
Work Time: 8.30 AM to 5.30 PM
Job Summary:
We are seeking a skilled Penetration Tester to join our security team. In this role, you will simulate cyber-attacks on computer systems to identify vulnerabilities that could be exploited by malicious actors. You will work across various platforms and technologies, utilizing your expertise to strengthen our security posture.
Key Responsibilities:
- Conduct Security Assessments: Execute penetration tests on applications, network devices, and cloud infrastructures to identify security weaknesses.
- Social Engineering: Plan and execute simulated social engineering attacks to evaluate employee awareness and organizational resilience against social threats.
- Research & Experimentation: Explore and implement various attack methods through ongoing research and experimentation to stay updated on emerging threats.
- Strategy Development: Create and refine strategies for penetration testing tailored to different environments, including networks, web/mobile applications, and IoT systems.
- Code Evaluation: Analyze and review codebases to identify vulnerabilities and recommend remediation strategies.
- Malware Analysis: Conduct reverse engineering of malware or spam to understand their behavior and mitigate future threats.
- Documentation: Record security findings, vulnerabilities, and compliance issues, ensuring thorough documentation for follow-up actions.
- Automation: Develop and implement automated testing methods to enhance the efficiency and productivity of security assessments.
- Reporting: Prepare comprehensive technical reports detailing vulnerabilities, risks, and suggested mitigations, along with executive-level summaries for management.
- Presentations: Effectively communicate findings to technical teams and executive management, ensuring clarity and actionable insights.
- Verification Testing: Conduct additional testing to verify the effectiveness of security enhancements and remediation efforts.
- Mobile Application Testing: Perform penetration testing specifically on mobile applications to ensure security across all platforms.
Preferred Qualifications:
- Certifications:
- Offensive Security Certified Professional (OSCP) (Preferred)
- Certified Penetration Testing Specialist (CPTS)
- PNPT (Pentester Ninja Professional Training)
- PJPT (Junior Penetration Tester)
- eCCPT (eLearnSecurity Certified Professional Penetration Tester)
- Technical Skills:
- Proficiency in penetration testing tools and frameworks (e.g., Metasploit, Burp Suite, Nessus).
- Familiarity with scripting languages (e.g., Python, Bash) for automation and tool development.
- Knowledge of networking protocols, security standards, and best practices.
- Understanding of web technologies, mobile application architecture, and cloud environments.
- Experience:
- Previous experience in cybersecurity, penetration testing, or related fields.
- Proven track record of identifying and exploiting vulnerabilities in various systems.
Personal Attributes:
- Strong analytical and problem-solving skills.
- Excellent communication and presentation abilities.
- Ability to work independently and as part of a team.
- Detail-oriented with a strong commitment to ethical standards and confidentiality.
Role:
Cyber SecurityIndustry Type:
IT Services & ConsultingDepartment:
IT & Information SecurityEmployment Type:
Full Time, PermanentRole Category:
IT Security