Penetration tester / Security Analyst

Job Description

We are looking for a penetration tester, to join our security organization and work in collaboration with the software engineering teams, infrastructure, and product teams to create and maintain our solutions secure. 

Key Responsibilities 

• Perform penetration testing of new and existing environments and products—web applications, infrastructure, and thick clients 
• Writing formal penetration testing reports to both technical and non-technical audiences 
• Presenting findings and remediations to the system owners  
• Documenting and improving our penetration testing process. 
• Identify vulnerabilities in public cloud offers (GCP, Azure and AWS) 
• Research emerging security vulnerabilities and the applicability within our realm.  
• Take technical lead on security-related topics 
• Support in source code review efforts 
• Triage and validate findings from our bug bounty program 
• Support red teaming exercises as required 

Technical Requirements 

• 3-5 years of professional experience in penetration testing or application security. 
• Understanding of multiple platforms, operating systems, software, communications, and network protocols 
• Experience with scripting and development languages (i.e., Python, PowerShell, JavaScript, and C#)  
• Proficient in common attack tools, vulnerability assessment, and static inspection tools. 
• Experience using secure development frameworks (i.e., OWASP Top 10, SANS Top 25, and Microsoft SDL). 
• Ability to communicate with both technical and non-technical stakeholders. 
• Industry-related certifications is a plus preferably someone with the following certifications: (OSCP, OSWE, CRTP, CRTO or eWPTx)

BE/BTECH in Information Technology, Computer Science, or a related field.