VAPT Consultant ( Web & Mobile)
Detalhes do emprego
Preferred Candidates: Immediate Joiners OnlyLocation: MumbaiEligibility: Min 1 Year Exp in VAPT (Web & Mobile).Role and Responsibility: · Hands-on role involving penetration testing and vulnerability assessment activities of complex applications, operating systems, wired and wireless networks, and mobile applications· Conduct Network/ System Vulnerability Assessments, Penetration Testing using tools to evaluate attack vectors· Conduct configuration reviews for OS, DB, Firewall, routers, Switches and other security devices/components· Perform Configuration compliance assessments for Endpoints / Assets /network devices and help maintain the security settings at compliant level with Specific Security Standards· Conduct source-code review using automated and manual approaches· Identify and report vulnerabilities, provide recommendations, and track closure of identified vulnerabilities· Create project deliverables / reports demonstrating the possible risk and impact· Abide by the project timelines and maintain project discipline· Communicate security issues to a wide variety of internal and external "customers" to include technical teams, executives, risk groups, vendors and regulators· Consult with application developers, systems administrators, and management to demonstrate security testing results, explain the threat presented by the results, and consult on remediationTechnical Skills Required: · Critical thinker and problem solver· Excellent organizational and time management skills· Manual Penetration Testing skills and techniques are required besides automated tools and frameworks· Familiar working with Publicly available exploits codes.· Good understanding of OSI layers and fundamental Operating system concepts, securitysettings for various flavours of Windows and Linux platforms.· Hands on knowledge on Tools: Nmap, Kali Linux, Metasploit, Armitage, Maltego, Burp Suite,Paros Proxy Nessus, nexpose, Wireshark, SQLmap etc.· Hands on experience with testing frameworks such as the PTES and OWASP PRB
Apply safely
To stay safe in your job search, information on common scams and to get free expert advice, we recommend that you visit SAFERjobs, a non-profit, joint industry and law enforcement organization working to combat job scams.
