Security Test Engineer

Engineer - Security Test

Allegion India is seeking a highly motivated, Security - Test Engineer, who will work as part of an offensive security/pen testing team to conduct grey and white box penetration testing and work collaboratively and cross functionally with product development teams to ensure a high standard of quality, security, and data privacy across the full product lifecycle. This position will be involved in security assessments involving a wide range of situations, for IoT devices, web applications, API, firmware, Mobile and cloud infrastructure. In early phases of new projects, you will help new product development teams perform security requirement analysis. You will be responsible for performing Threat modelling analysis and security design reviews. In process of development, you would be consulting as a security point of contact ensuring the secure software development process is followed. Once the product development is complete you shall be responsible for performing penetration testing and work with development teams to resolve all security issues before product launch.

Job Duties include:

• Perform the penetration testing on web, api, and mobile.
• Report and document security vulnerabilities.
• Create technical assessments which details the vulnerabilities, steps to reproduce, and recommendations for remediation
• Coordinate with stakeholders to complete test plans, bug details, and final report for each project.
• Follow and adhere to process.

Knowledge & Work Experience:

Required Skills & Abilities

• Exceptional problem-solving skills
• Good verbal and written communication skills
• Ability to use security testing tools, such as Burp Suite, Nmap, Nessus, tenable ,Qualisys guard, nexpose, rapid7, Metasploit, and others
• Hands on experience with AWS or Azure cloud services.
• Certification in a related discipline, such as CEH or cloud certifications
• Strong programming skills in programming languages like Python ,C#, ObjectiveC, etc
• Experience fuzzing applications and protocols is desired
• Highly technical practitioner with working knowledge of delivering secure products and services globally using modern technologies
• Knowledge of security protocols and principles.
• Excellent interpersonal skills

Desired Skills & Abilities

• Certification in a related discipline, such as OSCP,OSWP. (any 200 offsec or az 500 or equivalent)
• Strong programming skills in these programming languages: Python, C#, Objective C,
• Experience with Kali, Frida, MobSF, Wireshark
• Experience with static and dynamic code analysis
• Network protocol analysis(ARP / ICMP / TCP / UDP / HTTP / HTTPS/ Zigbee/ MQTT using TCP dump or Wireshark)- Good to have

Education:

• BE or M Tech in Computer Science & Engineering / Computer &Information Science /

Experience:

• 3 to 5 Years’ experience in penetration testing , security review, analysis, and reporting.

Allegion is a diverse and inclusive environment. We are an equal opportunity employer and are dedicated to hiring qualified protected veterans and individuals with disabilities. If for any reason you cannot apply through the job center, please contact HR, Allegion India for special accommodation.

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.