T D Newton & Associates

Sign Up/Sign In
Flag job

Report

Cyber Security Senior Analyst - Pen testing

Location

Bengaluru, Karnataka, India

JobType

full-time

About the job

Info This job is sourced from a job board

About the role

T D Newton & Associates

Website: tdnewton.com
Job details:

Cyber Security Senior Analyst - Pentesting

Missions


  • Moderate functional knowledge of cyber security or information security processes and expert domain knowledge
  • Assist functional manager in performing day to day security activities/operations by working independently;
  • handle larger projects or assignments Analyze the problem statements, define and execute the desired solutions;
  • mentor team members Work inline with defined processes, framework and provide regular functional updates to manager
  • Ability to prioritize deliverables and work in consultation with manager and other seniors in the team Contribute to various functional initiatives with larger responsibilities


Profile

• 3 to 6 years of related work experience in threat modeling, penetration testing and/or application security testing

• Expertise in conducting pentest on Web applications, API, thick client applications etc.

• Thorough understanding of application architectures, understanding of security standards, frameworks and methodologies, HTTP, TCP/IP

• Knowledge of web application attacks and defense strategies including those found in the OWASP Top 10, Mobile Top 10 and SANS top 25

• Knowledge using leading testing tools such as Accunatix, Burp suite, NMAP, Kali OS , Nessus, Metasploit etc.

• Experience with various operating systems, network security technologies, web application development technologies, languages and frameworks such as .Net, Java, PHP, Angular JS, NodeJS etc.

• Development and scripting languages such as Python, C/C++, Java/JavaScript

• Experience with Configuration and Deployment Management Testing, Identity Management Testing, Cookie/Session Management, Authentication/ Authorization Testing, Input Validation Testing, Privilege escalation testing, Enumeration testing

• Good communication, presentation and interaction skills

• OSCP certification (preferred), CEH, SANS or Certified Penetration Tester, Certified Expert Penetration Tester or GIAC Certified Penetration Tester

• Bugbounty hunters, CVE finders and other bugcrowd rank holders are preferred

Click on Apply to know more.

Skills

Python
penetration testing
Angular
API
C++
HTTP
information security
IP
Java
JavaScript
network security
NodeJS
PHP
Session Management
TCP
web application development