Penetration Tester
6 days ago
**Where you fit in**
The purpose of the IRM Function is to ensure that Shell is addressing Information Risks in an effective and efficient manner, commensurate with Shell risk appetite, and being seen as an industry leader among peers and key suppliers of security services.The Information Risk posture of Shell includes a wide variety of potential business impacts, such as HSSE impacts, production loss, financial and maintenance operations loss, loss of Most Confidential bidding data.
The IRM Function defines requirements for the assessment of Information Risks, defines the selection of mandated IT Controls, and defines and executes assessments of the design and operational effectiveness of these controls. The function organises communication campaigns to impact the behaviour of business and IT staff where it relates to Information Risks.In addition to these preventative measures, the IRM Function includes a Cyber Resilience function to understand the cyber threat landscape and the vulnerabilities to cyberattacks in IT systems and services, to detect malicious behaviour and to respond to incidents.
**What's** the role**
As part of the Information Risk Management function, the CyberDefence capability has specific focus on identifying cyber threats, discovery of IT vulnerabilities, monitoring for cyber intrusions and response to security incidentsAs part of the CyberDefence capability the Penetration testing team has the following main areas of focus:
- Support the Vulnerability Lead in planning penetration tests based on new IT developments and hypothetical threat scenarios and find appropriate budget and sponsors
- Scope the tests in more detail and find information on network address and accounts
- Execute the tests preventing Business disruption as much as possible
- Report on findings, fixing high risk vulnerabilities as soon as possible and registering other vulnerabilities for later risk priorization and remediation where required
- Operate periodic vulnerability scanning tools and services such as Nexpose, Veracode and others
- Support the Vulnerability Lead in consolidating the vulnerability scanning tools where possible
- Integrate reporting with other CyberDefence data in IRM workflow system (Collective) and data analytics solution (IRM investigation platform).
**What we need from you**
- 5-8 years of total IT experience with at least 3 years' experience in IT security and preferably experience in attack and penetration testing/ethical hacking or technical IT audits
- Has excellent analytical skills and appreciates a technical challenge
- Maintains knowledge and experience of current practice within own area of expertise and is aware of current developments within own area of expertise
- Is able to think and act like a hacker using his creativity to bypass IT defenses
- Has a solid understanding of IT networks and operating systems such as Windows and Unix/Linux.
- Has experience with analysing network traffic using tools such as tcpdump, wireshark.
- Has experience using open source scanning tools such as nmap, nessus, metasploit and/or commercial tools such as Rapid7, Quallys.
- Has experience with scripting tools and programming languages such as Perl, Python, C, C++, VBS, Java and analytical and reporting tools such as Excel, Sharepoint and preferably Splunk.
- Has relevant certifications such as, CISSP, SANS and preferably GIAC Penetration Tester (GPEN), SEC 560: Network Penetration Testing and Ethical Hacking, SEC 542: Web App Penetration Testing and Ethical Hacking, or GWAPT: GIAC Web Application Penetration
- Certifications such as OSC, OSWP, OSCE, OSEE, or OSWE
-
Penetration Tester
5 days ago
Bengaluru, India Shell Full time**The Role**: **Where you fit in?** The purpose of the IRM Function is to ensure that Shell is addressing Information Risks in an effective and efficient manner, commensurate with Shell risk appetite, and being seen as an industry leader among peers and key suppliers of security services.The Information Risk posture of Shell includes a wide variety of...
-
Penetration Tester
6 days ago
Bengaluru, India APTO SOLUTIONS - EXECUTIVE SEARCH & CONSULTANTS Full timeProfile- Penetration TesterExperience- 3+ YearsLocation- BangaloreResponsibilitiesUnderstand project deliverables and application detailsRun automated and manual security checks (not limited to tools) to uncover security weaknesses in the systemPropose mitigation steps for identified risks and threatsProvide clear recommendations from a security perspective...
-
Penetration Tester
7 days ago
Bengaluru, India APTO SOLUTIONS - EXECUTIVE SEARCH & CONSULTANTS Full timeProfile- Penetration TesterExperience- 3+ YearsLocation- BangaloreResponsibilitiesUnderstand project deliverables and application detailsRun automated and manual security checks (not limited to tools) to uncover security weaknesses in the systemPropose mitigation steps for identified risks and threatsProvide clear recommendations from a security perspective...
-
Penetration Tester
5 days ago
Bengaluru, India APTO SOLUTIONS - EXECUTIVE SEARCH & CONSULTANTS Full timeProfile- Penetration Tester Experience- 3+ Years Location- Bangalore Responsibilities Understand project deliverables and application details Run automated and manual security checks (not limited to tools) to uncover security weaknesses in the system Propose mitigation steps for identified risks and threats Provide clear recommendations from a security...
-
Penetration Tester
3 days ago
Bengaluru, India Shell Full time**The Role**: **Where you fit in** The purpose of the IRM Function is to ensure that Shell is addressing Information Risks in an effective and efficient manner, commensurate with Shell risk appetite, and being seen as an industry leader among peers and key suppliers of security services.The Information Risk posture of Shell includes a wide variety of...
-
Penetration Tester
5 days ago
Bengaluru, India ActivBytes Full timeRole: Vulnerability Assessment and Penetration Testing ConsultantExperience Required: 4-5 yearsLocation - KeralaFull-Time positionImmediate RequirementSkills Required:- Vulnerability Assessment- Penetration Testing- Knowledge of SIEM tools is highly desirablePlease share your resumes with along with your Current CTC, expected CTC and notice period.
-
Penetration tester
4 days ago
Bengaluru, India ActivBytes Full timeRole: Vulnerability Assessment and Penetration Testing ConsultantExperience Required: 4-5 yearsLocation - KeralaFull-Time positionImmediate RequirementSkills Required:- Vulnerability Assessment- Penetration Testing- Knowledge of SIEM tools is highly desirablePlease share your resumes with along with your Current CTC, expected CTC and notice period.
-
Penetration Tester
5 days ago
Bengaluru, India ActivBytes Full timeRole: Vulnerability Assessment and Penetration Testing Consultant Experience Required: 4-5 years Location - Kerala Full-Time position Immediate Requirement Skills Required: - Vulnerability Assessment - Penetration Testing - Knowledge of SIEM tools is highly desirable Please share your resumes with along with your Current CTC, expected CTC and notice...
-
Penetration Tester
5 days ago
Bengaluru, India APTO SOLUTIONS - EXECUTIVE SEARCH & CONSULTANTS Full timeProfile- Penetration TesterExperience- 3+ YearsLocation- BangaloreResponsibilitiesUnderstand project deliverables and application detailsRun automated and manual security checks (not limited to tools) to uncover security weaknesses in the systemPropose mitigation steps for identified risks and threatsProvide clear recommendations from a security perspective...
-
Penetration Tester
6 days ago
Bengaluru, India ActivBytes Full timeRole: Vulnerability Assessment and Penetration Testing ConsultantExperience Required: 4-5 yearsLocation - KeralaFull-Time positionImmediate RequirementSkills Required:- Vulnerability Assessment- Penetration Testing- Knowledge of SIEM tools is highly desirablePlease share your resumes with hiring@activbytes.com along with your Current CTC, expected CTC and...
-
Penetration Tester
7 days ago
Bengaluru, India ActivBytes Full timeRole: Vulnerability Assessment and Penetration Testing ConsultantExperience Required: 4-5 yearsLocation - KeralaFull-Time positionImmediate RequirementSkills Required:- Vulnerability Assessment- Penetration Testing- Knowledge of SIEM tools is highly desirablePlease share your resumes with hiring@activbytes.com along with your Current CTC, expected CTC and...
-
Cybersecurity Consultant
6 days ago
Bengaluru, Karnataka, India Teamware Solutions Full timeCompany OverviewTeamware Solutions, a division of Quantum Leap Consulting Pvt. Ltd, is a dynamic and forward-thinking organization that offers innovative cybersecurity solutions to clients worldwide.Job DescriptionWe are seeking an experienced Cybersecurity Consultant - Application Penetration Tester to join our team in Bengaluru. As a key member of our...
-
Highly Skilled Manual Penetration Tester
6 days ago
Bengaluru, Karnataka, India Teamware Solutions Full timeCompany Overview:Teamware Solutions, a division of Quantum Leap Consulting Pvt. Ltd, is a renowned organization dedicated to delivering exceptional solutions in the realm of security and technology.Job Description:We are seeking a highly skilled Manual Penetration Tester to join our team. The successful candidate will be responsible for conducting manual...
-
APTO SOLUTIONS
5 days ago
Bengaluru, India APTO SOLUTIONS - EXECUTIVE SEARCH & CONSULTANTS Full timeProfile- Penetration TesterExperience- 3+ YearsLocation- BangaloreResponsibilitiesUnderstand project deliverables and application detailsRun automated and manual security checks (not limited to tools) to uncover security weaknesses in the systemPropose mitigation steps for identified risks and threatsProvide clear recommendations from a security perspective...
-
Security Specialist
3 days ago
Bengaluru, Karnataka, India Cashfree Payments Full timeCashfree Payments is seeking a skilled Security Specialist - Penetration Tester to join our team.Job DescriptionWe are looking for an experienced and innovative Security Specialist who will be responsible for identifying vulnerabilities in our products and collaborating with the development team to implement secure solutions. This role requires strong...
-
Network Penetration Tester
5 days ago
Bengaluru, India eSolutionsFirst Full time**Job Description**: " Bachelor's degree Computer Science, Electrical Engineering, or Computer Engineering preferred " Experienced in executing Network Penetration tests " Strong understanding of network and security concepts including TCP/IP protocol stack, HTTP, HTTP/2, PKI, SSL, TLS, DTLS, mutual TLS, OAuth, Authentication, Authorization " Experienced in...
-
Medior Penetration Tester
6 days ago
Bengaluru, India Siemens Healthineers Full timeExecute penetration tests and security assessments on internal and external networks, Windows and Linux environments, cloud (AWS and Azure) architecture, IoT devices, and more. - Perform Vulnerability Assessment Penetration Testing (VAPT) and identify security gaps. - Identify and exploit incorrect configurations and security vulnerabilities on Windows and...
-
Penetration Tester
2 days ago
Bengaluru, India Cyber Heals Full timeResponsibilitiesPerform manual and automated secure code reviews using tools like SonarQube.Utilize Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Interactive Application Security Testing (IAST) tools.Implement and assess Runtime Application Self-Protection (RASP) solutions.Identify and remediate OWASP Top Ten...
-
Penetration Tester
16 hours ago
Bengaluru, India Cyber Heals Full timeResponsibilitiesPerform manual and automated secure code reviews using tools like SonarQube.Utilize Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Interactive Application Security Testing (IAST) tools.Implement and assess Runtime Application Self-Protection (RASP) solutions.Identify and remediate OWASP Top Ten...
-
Penetration Tester
14 hours ago
Bengaluru, India Cyber Heals Full timeResponsibilitiesPerform manual and automated secure code reviews using tools like SonarQube.Utilize Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Interactive Application Security Testing (IAST) tools.Implement and assess Runtime Application Self-Protection (RASP) solutions.Identify and remediate OWASP Top Ten...
