Security Engineer - VM & Red Team
OLA CAB
- Location
- Bengaluru, Karnataka, India
- Job type
- Full-time
Required skills
- Python
- penetration testing
- AWS
- communication skills
- DevOps
- GCP
- OpenStack
About the role
OLA CAB
Website:
olacabs.com
Job details:
Roles and Responsibilities
- Conduct vulnerability assessments across systems, networks, and applications using industry-standard tools to identify security weaknesses.
- Collaborate with IT and development teams to prioritize remediation activities based on risk and recommend vulnerability mitigation approaches.
- Participate in red team exercises and simulate adversarial attacks to identify gaps in detection and prevention.
- Integrate red team findings with CISO and security departments to enhance threat prevention, detection, and response, creating a feedback loop for improvement.
- Provide stakeholders with intelligence on emerging security trends, vulnerabilities, and mitigation strategies through simulations and Proofs of Concept.
- Automate routine vulnerability management and red-teaming tasks to improve efficiency and effectiveness.
- Participate in knowledge-building exercises and continuously improve vulnerability management and red team capabilities.
- Contribute to improving security posture through collaboration and ongoing risk mitigation efforts.
Experience & Skills
- Relevant experience in vulnerability management, red teaming, or a related field in a security environment.
- Strong understanding of vulnerability assessment tools, including scanning and reporting.
- Good understanding of infrastructure components, including Load Balancers, Firewalls, Proxies, and VPNs.
- Familiarity with patch management processes, prioritizing risks, and remediation techniques.
- Knowledge of various threat models and attack simulations, including hands-on experience with penetration testing tools and methodologies.
- Strong analytical skills and the ability to identify, assess, and recommend effective remediation strategies for vulnerabilities.
- Self-motivated and curious about emerging vulnerabilities and exploit techniques.
- Familiarity with MITRE ATT&CK Framework, OWASP Top 10, and standard attack TTPs.
- Prior experience with cloud environments such as AWS, GCP, and OpenStack, along with Python scripting, is highly advantageous.
- Strong verbal and written communication skills, capable of collaborating effectively with Software Engineering, DevOps, IT, and Security teams.
- Bachelor’s degree in a related field or equivalent demonstrated experience and knowledge.
- Expertise in ISO/IEC 27001, ISO 27017, ISO 27018, SOC 2, and PCI DSS is highly desirable.
Click on Apply to know more.
This page is fully interactive when JavaScript is enabled. Please enable JavaScript to apply or browse related roles.