Website:
ensureriskadvisoryllp.com
Job details:
Company Description
Ensure Risk Advisory LLP specializes in Consulting, Business Services, and Risk Management, offering comprehensive solutions that drive organizational resilience, compliance, and sustainable growth. With certified professionals skilled in audit frameworks, digital transformation, and process improvements, the company is equipped to modernize systems and enhance operational efficiency. Our team has diverse industry experience and expertise in areas such as SAP solutions, project leadership, and full-stack web development. We are committed to delivering measurable value and preparing enterprises for a future-ready business landscape.
We are hiring for one of our valued clients in the Service Industry.
Interested candidates are requested to share their updated resume to contact@ensureriskadvisoryllp.com
with the Subject line "Application for Senior Quantum Computing Scientist / Architectā.
Role Description
We are seeking a highly experienced VAPT professional with 10+ years of expertise in cybersecurity testing, ethical hacking, and security assessments. The candidate will lead end-to-end vulnerability assessments and penetration testing engagements across web, mobile, network, cloud, and enterprise environments, while guiding teams and improving overall security posture.
Qualifications
- 10+ years of experience in cybersecurity / VAPT / ethical hacking.
- Strong expertise in web application security and API security testing.
- Deep understanding of OWASP Top 10 and common attack vectors.
- Hands-on experience with enterprise security testing tools.
- Strong knowledge of networking concepts (TCP/IP, DNS, HTTP/S, VPNs).
- Experience in scripting (Python preferred).
- Experience with cloud security (AWS/Azure/GCP).
- Excellent communication and report writing skills.
Key Responsibilities
1. Vulnerability Assessment & Penetration Testing
- Lead VAPT engagements for web applications, APIs, mobile apps (Android/iOS), networks, and cloud infrastructure.
- Perform advanced exploitation techniques including privilege escalation, lateral movement, and post-exploitation activities.
- Conduct internal and external network penetration testing.
- Identify security misconfigurations, weak authentication mechanisms, and insecure APIs.
2. Security Analysis & Reporting
- Analyze vulnerabilities using tools and manual techniques.
- Prepare detailed technical and executive-level reports with risk ratings and remediation steps.
- Present findings to stakeholders, including C-level executives and technical teams.
3. Tool Expertise & Automation
- Use tools such as Burp Suite Pro, Nmap, Metasploit, Nessus, Wireshark, and Burp extensions.
- Develop custom scripts (Python, Bash, PowerShell) for automation and exploit development.
- Integrate security testing into CI/CD pipelines (DevSecOps practices).
4. Cloud & Infrastructure Security
- Perform security assessments on AWS, Azure, or GCP environments.
- Evaluate IAM policies, storage security, container security (Docker/Kubernetes).
- Identify misconfigurations and cloud-native vulnerabilities.
5. Compliance & Standards
- Ensure testing aligns with OWASP Top 10, OWASP API Security Top 10, PTES, NIST, and ISO 27001.
- Support compliance audits and regulatory requirements.
6. Leadership & Mentoring
- Lead and mentor junior and mid-level security testers.
- Review test cases, methodologies, and reports.
- Define VAPT strategy and best practices for the organization.
7. Research & Threat Intelligence
- Stay updated with latest vulnerabilities, zero-day exploits, and attack techniques.
Contribute to internal knowledge base and security research.
Preferred Certifications
- OSCP (Offensive Security Certified Professional)
- OSCE / OSEP
- CEH (Certified Ethical Hacker)
- CISSP / CISM (for leadership roles)
- AWS Security Specialty / Azure Security Engineer
Click on Apply to know more.