Innova ESI
Website:
innovaesi.com
Job details:
Note: Looking for immediate joiner
Location:- Chennai/Bangalore/Pune/Noida
Job Description:
- Experience with manual attack and penetration testing.
- Experience with scripting / programming skills (e.g., Bash, Python, PowerShell, Java, Perl, Rust, Golang, etc.).
- Updated and familiarized with the latest exploits and security trends.
- Experience to lead a technical team to conduct remote and on-site penetration testing within defined rules of engagement.
- Familiarity to perform network penetration testing that involves avoiding detection and common alert thresholds on Endpoint Detection and Response (EDR) systems and security monitoring tools.
- Familiarity with the latest exploits, tactics, techniques, and procedures (TTP), vulnerability remediation and security trends in Cloud implementations.
- Possessing a profound knowledge of attack vectors, exploitation techniques, and vulnerability assessment methodologies, complemented by practical experience in implementing the MITRE ATT&CK framework.
- Any two of the following certifications: OSCP, OSWP, OSEP, OSCE, OSEE, GPEN, GWAPT, GMOB, GCPN, GXPN, GRTP, GDAT, CRTO, CRTP, CRTE, CARTP, CARTE, CREST CRT, CCT INF, CCT APP, CCSAS., CCSAM, RTA covert entry associate, AWS Certified Security Specialty.
- A driver's license valid in the U.S.
- Willingness and flexibility to travel up to 4050%, domestically and internationally to meet client needs.
-
- A bachelor's degree in Computer Science, Cybersecurity, Information Systems, Information Technology, Engineering, or a related field with at least 3+ years of related work experience or a master's degree and at least 2+ years of related work experience in penetration testing which includes internet, intranet, web application penetration tests, wireless, social engineering, and red team assessments.
- Contributions to the security community, including research, public CVE disclosures, bug bounty acknowledgments, open-source project involvement, blog posts, publications, and similar activities.
- Knowledge of Windows, Linux, Unix, any other major operating systems.
- Deep understanding of TCP/IP network protocols.
- Deep understanding and experience with various Active Directory attack techniques.
- Understanding of network security and popular attacks vectors.
- An understanding of web-based application vulnerabilities (OWASP Top 10).
- Strong analytical and problem-solving abilities.
- Excellent communication skills, both written and verbal.
- Ability to work collaboratively in a team environment.
Mandatory Skill
Pen testing, minimum 150-200 Pen testing should be able to perform, Web and API, BurpSuite, Manual PT
Good to have: any one of certifications
Note - Refer column J ( Open role split ) for role bifurcation skillwise
Click on Apply to know more.