Penetration Tester
1 month ago
**The Role**:
**Where you fit in?**
The purpose of the IRM Function is to ensure that Shell is addressing Information Risks in an effective and efficient manner, commensurate with Shell risk appetite, and being seen as an industry leader among peers and key suppliers of security services.The Information Risk posture of Shell includes a wide variety of potential business impacts, such as HSSE impacts, production loss, financial and maintenance operations loss, loss of Most Confidential bidding data. The IRM Function defines requirements for the assessment of Information Risks, defines the selection of mandated IT Controls, and defines and executes assessments of the design and operational effectiveness of these controls. The function organises communication campaigns to impact the behaviour of business and IT staff where it relates to Information Risks.In addition to these preventative measures, the IRM Function includes a Cyber Resilience function to understand the cyber threat landscape and the vulnerabilities to cyberattacks in IT systems and services, to detect malicious behaviour and to respond to incidents.
**What's** the role?**
As part of the Information Risk Management function, the CyberDefence capability has specific focus on identifying cyber threats, discovery of IT vulnerabilities, monitoring for cyber intrusions and response to security incidentsAs part of the CyberDefence capability the Penetration testing team has the following main areas of focus:
- To find major vulnerabilities in IT landscapes where Shell data is hosted before they are being exploited for malicious purposes.
- To prioritize and help remediate vulnerabilities as soon as possible where required.
A Penetration tester in this team you are responsible:
- To plan, scope, execute and report on attack & penetration tests on new IT developments and hypothetical threat scenarios.
- To close high risk vulnerabilities as soon as possible and register other vulnerabilities for risk priorization and remediation where required.
**Accountabilities**
**Penetration Testing**
- Support the Vulnerability Lead in planning penetration tests based on new IT developments and hypothetical threat scenarios and find appropriate budget and sponsors.
- Scope the tests in more detail and find information on network address and accounts.
- Where necessary to help find additional expertise necessary to execute the tests.
- Execute the tests preventing Business disruption as much as possible.
- Report on findings, fixing high risk vulnerabilities as soon as possible and registering other vulnerabilities for later risk priorization and remediation where required.
**Vulnerability Scanning**
- Operate periodic vulnerability scanning tools and services such as Nexpose, Veracode and others.
- Support the Vulnerability Lead in consolidating the vulnerability scanning tools where possible.
- Integrate reporting with other CyberDefence data in IRM workflow system (Collective) and data analytics solution (IRM investigation platform).
**What we need from you?**
Experience and Qualifications required.
- Is a knowledgeable, creative and responsible IT security professional.
- Has excellent analytical skills and appreciates a technical challenge.
- Has a passion for IT technology and is able to share that with other members of the team.
- Has good written and verbal communication skills and provides well-informed advice.
- Produces high quality deliverables in terms of both content and presentation. Examples of deliverables include: reports, presentations and reasoned arguments.
- Demonstrates an understanding of the issues of interest to Shell and proposes viable solutions within the scope of own expertise, taking into account the needs of those affected.
- Maintains knowledge and experience of current practice within own area of expertise and is aware of current developments within own area of expertise.
- Develops and maintains knowledge of Cyber security and maintains an awareness of current developments.
- Promotes transfer of knowledge and awareness of information security to those in related areas.
- Is comfortable working virtually.
- Is able to think and act like a hacker using his creativity to bypass IT defences.
- Has at least 1 year experience in IT security and preferably experience in attack and penetration testing/ethical hacking or technical IT audits.
- Has a solid understanding of IT networks and operating systems such as Windows and Unix/Linux.
- Has experience with analysing network traffic using tools such as tcpdump, wireshark.
- Has experience using open source scanning tools such as nmap, nessus, metasploit and/or commercial tools such as Rapid7, Quallys.
- Has experience with scripting tools and programming languages such as Perl, Python, C, C++, VBS, Java and analytical and reporting tools such as Excel, Sharepoint and preferably Splunk.
- Has relevant certifications such as, CISSP, SANS and preferably:
- GIAC Penetration Tester
-
Junior Penetration Tester
4 weeks ago
Bengaluru, India CSG Talent Full time**Junior Penetration Tester** **Are you an up-and-coming Penetration tester within Cybersecurity or Medical Devices?** **Do you want the opportunity to and grow develop in this field with an international leader? **This is a fantastic opportunity to join a world leading provider of technical services. We provide a customer centric approach to our solutions...
-
Penetration Tester
1 month ago
Bengaluru, India Terraeagle Full time**Job Brief** We are looking for talented penetration testers who like to break software and embedded devices.In this role, you will conduct offensive security operations to emulate adversary tactics and procedures to test preventative, detective and response controls across the global technology landscape. **Responsibilities** - Conduct highly complex...
-
Penetration Tester
2 months ago
Bengaluru, India Terraeagle Full time**Job Brief** We are looking for talented penetration testers who like to break software and embedded devices.In this role, you will conduct offensive security operations to emulate adversary tactics and procedures to test preventative, detective and response controls across the global technology landscape. **Responsibilities** - Conduct highly complex...
-
Penetration Tester
2 weeks ago
Bengaluru, India IT Full timeJob Title : Penetration Tester- Experience Required : - 6+ years of experience in Penetration Testing.- Minimum 8 years combined experience in either incident response, threat intelligence, or threat hunting.Job Description : We are seeking a highly skilled Penetration Tester with extensive experience in cybersecurity and a strong background in incident...
-
Penetration Tester
3 weeks ago
Bengaluru, India Securseed Full timeJob Title: Vulnerability Assessment and Penetration TesterCompany Overview:Securseed InfoSec is a leading cybersecurity firm dedicated to providing cutting-edge solutions to protect our clients' digital assets and sensitive information. We specialize in comprehensive vulnerability assessments, penetration testing, and security consulting services that...
-
Penetration Tester
3 weeks ago
Bengaluru, India Securseed Full timeJob Title: Vulnerability Assessment and Penetration TesterCompany Overview:Securseed InfoSec is a leading cybersecurity firm dedicated to providing cutting-edge solutions to protect our clients' digital assets and sensitive information. We specialize in comprehensive vulnerability assessments, penetration testing, and security consulting services that...
-
Penetration Tester
4 weeks ago
Bengaluru, India Lycus Full timeResponsibilities: ▪ Develop and maintain security testing plans for internal environments and vendors ▪ Develop meaningful metrics to reflect the true posture of the environment allowing the organization to make educated decisions based on risk ▪ Produce actionable, threat-based, reports on security testing results ▪ Conduct security audits and...
-
Penetration Tester
1 month ago
Bengaluru, India IBM Full time**Introduction** Since our founding, IBMers have been driven by a singular purpose. Making an impact on each other, our clients, and the world, we strive to Be Essential. By developing trust and personal responsibility in all relationships IBMers around the world have focused on innovation that matters to the world and have dedicated themselves to every...
-
Penetration Testing
4 weeks ago
Bengaluru, India Wipro Limited Full timeOverview: **CONSULTANT Penetration Tester** **OVERVIEW** As a Cyber Security Analyst (IT Penetration Tester), you?ll support the team lead and be responsible for penetration testing on client and third-party IT solutions in on-premises, mobile and cloud environments. **Your duties** -Coordinate small to medium test engagements -Conduct technical...
-
Penetration Tester
3 days ago
Bengaluru, India Noventiq Full time**Noventiq is hiring!** Noventiq (the brand name of Cyprus-registered Softline Holding plc) is a leading global solutions and services provider in digital transformation and cybersecurity, headquartered and listed in London. The company enables, facilitates and accelerates digital transformation for its customers’ businesses, connecting 75,000+...
-
Vulnerability Assessment and Penetration Tester
4 weeks ago
Bengaluru, Karnataka, India Securseed Full timeJob Title: Vulnerability Assessment and Penetration Tester **Salary**: ₹1,000,000.00 - ₹2,000,000.00 per year **Benefits**: - Flexible schedule - Leave encashment - Paid sick time - Provident Fund Schedule: - Day shift - Monday to Friday Application Question(s): - We must fill this position urgently. Can you start immediately? - We must fill this...
-
Network Penetration Tester
4 weeks ago
Bengaluru, India Sureminds Solutions Pvt Ltd Full time**Opening from MNC.....** **Network Penetration Tester.** **Exprinces: - 5+ Years** **Location: - Bangalore** **NP: - max 30 Days** "Looking for Ethical hacker profiles with following skill sets - Bug Bounty Experience (Must list Public / Private Profiles) - Relevant Industry certifications (OSCP, OSCE, CRTP, CRTO, CREST CRT, SANS GPEN) - Any...
-
Freelance Network and Web Penetration Tester
5 days ago
Bengaluru, India ThreatXIntel Full timeCompany DescriptionThreatXIntel is a startup cyber security company dedicated to protecting businesses and organizations from cyber threats. Our team of experienced professionals offers a range of services, including cloud security, web and mobile security testing, cloud security assessment, DevSecOps, and more.We understand that the world of cyber security...
-
Freelance Network and Web Penetration Tester
5 days ago
Bengaluru, India ThreatXIntel Full timeCompany DescriptionThreatXIntel is a startup cyber security company dedicated to protecting businesses and organizations from cyber threats. Our team of experienced professionals offers a range of services, including cloud security, web and mobile security testing, cloud security assessment, DevSecOps, and more.We understand that the world of cyber security...
-
Penetration Testing- Cyber security
1 week ago
Bengaluru, India YASH Technologies Full timeExcellent job opportunity forPenetration TesterLocation: Bangalore ,Hyderabad, Indore, PuneJob Description:1. Total Years of experience 3-6 Years2. Experience in Server to Server API3. In depth Technical Remediation knowledge with little coding knowledge4. In depth Technical Remediation knowledge with little coding knowledge5. Good Knowledge in Bug Bounty...
-
Penetration Tester
2 months ago
Bengaluru, India Shell Full time**The Role**: **Where you fit in** You will be a core player in IRM Function is to ensure that Shell is addressing Information Risks in an effective and efficient manner, commensurate with Shell risk appetite, and being seen as an industry leader among peers and key suppliers of security services. The Information Risk posture of Shell includes a wide...
-
Penetration Testing- Cyber security
1 week ago
Bengaluru, India YASH Technologies Full timeExcellent job opportunity for Penetration Tester Location: Bangalore ,Hyderabad, Indore, PuneJob Description:1. Total Years of experience 3-6 Years 2. Experience in Server to Server API 3. In depth Technical Remediation knowledge with little coding knowledge 4. In depth Technical Remediation knowledge with little coding knowledge 5. Good Knowledge in Bug...
-
Penetration Testing- Cyber security
1 week ago
Bengaluru, India YASH Technologies Full timeExcellent job opportunity for Penetration Tester Location: Bangalore ,Hyderabad, Indore, PuneJob Description:1. Total Years of experience 3-6 Years 2. Experience in Server to Server API 3. In depth Technical Remediation knowledge with little coding knowledge 4. In depth Technical Remediation knowledge with little coding knowledge 5. Good Knowledge in Bug...
-
Product Security Penetration Tester
4 weeks ago
Bengaluru, India BAXTER Full time**This is where you save and sustain lives** At Baxter, we are deeply connected by our mission. No matter your role at Baxter, your work makes a positive impact on people around the world. You'll feel a sense of purpose throughout the organization, as we know our work improves outcomes for millions of patients. Baxter's products and therapies are found in...
-
Android Device Vulnerability Assessment Engineer
4 weeks ago
Bengaluru, India Whitefield Careers Full timePosition Overview :We are seeking a talented and experienced Android Device Vulnerability Assessment and Penetration Tester to join our team. In this role, you will be responsible for identifying security weaknesses in Android devices, applications, and systems, and conducting penetration tests to assess their exploitability. You will work closely with our...
