Experience : 2 to 3 years

• Minimum 2-3 years of Security & Pen Testing Experience
• Conduct Vulnerability Assessments, Penetration Testing, Application Security Assessments, Log Review, Review of Documents and Reporting
• Conduct and compile findings on new vulnerabilities, new tools for departmental use
• Create project deliverables / reports and assist the immediate supervisor during submissions and client discussions.
• Abide by the project timelines and maintain project discipline
• Create new testing methods to identify vulnerabilities
• Perform manual or automated security testing using commercial security testing tools
• Conduct Greybox Testing (Authenticated) and/or Blackbox Testing (Unauthenticated) Penetration Tests
• Conduct Whitebox Testing and Secure Code Review using IBM/HCL App Scan Tool
• Provide professional recommendations / advice to mitigate and resolve the vulnerabilities
• Present the security testing results to the relevant stakeholders
• Knowledge in conducting security testing with the following guidelines and standards
  • Open Web Application Security Project (OWASP Top 10 Frameworks)
  • Common Vulnerability Scoring System (CVSS)
  • Common Vulnerabilities and Exposures (CVE)
• Strong oral and written communication skills, including a demonstrated ability to prepare quality documentation and presentations for technical and non-technical audiences
• Detailed oriented, Strong deductive reasoning, critical thinking and problem-solving skills
• Ability to work in a fast-paced team environment / Open to learn and grow with the organization
• Candidate should be based out of Mumbai / Should be open to support as per client request