Cst Associate Penetration Tester
2 weeks ago
**About The Role**:
The Continuous Security Testing service is a consultant led vulnerability identification and verification service which makes use of automated vulnerability scanning along with significant manual testing against a broad scope in a continuing engagement. The purpose of the service is to continually monitor a customer’s external attack surface for new vulnerabilities, changes in the scope of the attack surface, and proactively inform customers of discovered issues along with recommended remediation; with the overall aim of reducing the lifetime of each vulnerability. Manual testing includes identification of issues which automation alone could not identify, exploitation of all issues, often chaining multiple findings together in order to determine the true impact of vulnerabilities for the customer.
- Manual identification and exploitation of vulnerabilities.
- Manual verification and exploitation of scanner findings.
- Detailed analysis of issues identified and exposure for the customer including proof of concept, reproduction steps, and recommended remediation.
- Communication of findings to the customer in a detailed, accurate and manageable manner both orally and through written vulnerability/scope notifications and periodic summaries.
- Continual professional development to maintain and develop knowledge and technical competencies.
- Maintain professional technical qualifications to demonstrate competency to our clients.
- Undertaking projects and support tasks as appropriate to the role.
**Progression**:
- During mentoring and experience progression, the Associate Penetration Tester will be tasked with- Pre-engagement activities including scoping of assessments and statements of work and determining customer requirements and restrictions.
- On boarding customers into the service including configuration of continual scanning and liaising with customer to resolve issues which may reduce the effectiveness of scanning.
- Monitoring of the customers’ external perimeter for changes, and proactive discovery of new targets to include within the customer’s scope.
**About You**:
**Essential**:
- Excellent written and spoken English including presentation, structure, spelling, and grammar. Along with experience conveying technical information in an accessible manner.
- Core computing skills including but not limited to:
- Networking fundamentals - understanding of OSI Model, TCP/IP, HTTP, DNS, SMB, SMTP and relevant tools.
- Microsoft Windows and Office proficiency along with proficiency in one or more Linux distributions.
- REST APIs, XML and JSON formats.
- Vulnerability identification and exploitation (not limited to OWASP Top 10).
- Experience with common assessment tools such as MITM proxies (e.g. Burp Suite Pro and SQLMap).
- General knowledge of internal and external infrastructure technologies and security assessment including but not limited to:
- Identification and exploitation of misconfigurations or known vulnerabilities in common enterprise infrastructure and services (Windows Domains, Linux servers, virtualisation, databases, switches/routers, etc).
- Knowledge of a scripting language such as Python (preferred), Ruby, PowerShell, or Bash, for the development of new, or editing existing, tools.
- Evidence of rapidly and confidently gaining and knowledge of emerging technologies, vulnerabilities, and penetration testing tools and techniques.
- Excellent time management including setting priorities and goals to complete assigned and arising tasks.
**Desirable**:
- CPSA - CREST Practitioner Security Analyst (or above)
- Public speaking experience
- A related Bachelor’s degree.
- Experience with live bug bounties, particularly where automation has been implemented.
- Knowledge of Open Source Intelligence gathering techniques. Including but not limited to use of Google dorks, DNS, domain registration, certificate transparency, and other public sources of information.
**About Us**:
**About Claranet**
At Claranet, we’re experienced in implementing progressive technology solutions which help our customers solve their epic business challenges. We’re committed to understanding their problems, delivering answers quickly, and making a lasting impact to their business.
We are agile, focused and experienced in business modernisation. Our approach helps customers make genuine, significant shifts in their business strategy, to deliver financial savings, boost innovation, and create a resilient business. We continually invest in our people and the latest technologies, so our customers get peace of mind knowing that they have access to the best talent and services.
In the UK we have over 500 staff working in London, Gloucester, Warrington, Bristol, and Leeds, or as homeworkers.
**Working For Claranet**
Here at Claranet we pride ourselves on going the extra mile for and with our employees (yes, we really mean it). We offer an extensive benefits package that you can tailor to
-
Penetration Tester
3 weeks ago
Hyderabad, India Experian Full timeJob DescriptionJob DescriptionPosition Overview:At Experian, we recognize the need for vigilant cybersecurity to safeguard our systems and data. As such, we are seeking a Penetration Tester to fortify our defenses and ensure our digital assets remain secure.Role Definition:The Penetration Tester is an essential part of our cybersecurity team, responsible for...
-
Penetration Tester
1 month ago
hyderabad, India Experian Full timeJob Description Job Description Position Overview: At Experian, we recognize the need for vigilant cybersecurity to safeguard our systems and data. As such, we are seeking a Penetration Tester to fortify our defenses and ensure our digital assets remain secure. Role Definition: The Penetration Tester is an essential part of our...
-
Penetration Tester
1 month ago
Hyderabad, India Experian Full timeJob Description Job Description Position Overview: At Experian, we recognize the need for vigilant cybersecurity to safeguard our systems and data. As such, we are seeking a Penetration Tester to fortify our defenses and ensure our digital assets remain secure. Role Definition: The Penetration Tester is an essential part of our cybersecurity team,...
-
Penetration Tester
4 weeks ago
Hyderabad, India Claranet Full time**About The Role**: **Role** The primary function of a Penetration Tester in the Continuous Security Testing (CST) team is to continually review the customers’ defined scope for vulnerabilities, identify additional targets that should be included in the scope, and report these to the client in a timely, accurate, and comprehensive manner. Penetration...
-
Penetration Tester
1 month ago
Hyderabad, India BreachLock Full timePenetration Tester Job Overview: We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a crucial role in staying ahead of emerging threats through proactive...
-
Penetration Tester
1 month ago
hyderabad, India BreachLock Full timePenetration Tester Job Overview: We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a crucial role in staying ahead of emerging threats through proactive...
-
Penetration Tester 1
4 weeks ago
Hyderabad, India RSM US LLP Full timeThe Penetration Tester conducts tests and purposefully attempts to exploit existing computer systems and software to detect and correct weaknesses. The Penetration Tester must have experience with tools used to perform Dynamic Application Security Testing (DAST) along with an understanding of common software security issues and remediation techniques (OWASP...
-
Penetration Tester
3 weeks ago
Hyderabad, India BreachLock Full timePenetration TesterJob Overview:We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a crucial role in staying ahead of emerging threats through proactive security...
-
Penetration Tester
2 weeks ago
Hyderabad, India BreachLock Inc Full timeJob Overview:We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a crucial role in staying ahead of emerging threats through proactive security...
-
Penetration Tester
2 weeks ago
hyderabad, India BreachLock Inc Full timeJob Overview:We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a crucial role in staying ahead of emerging threats through proactive security...
-
Penetration Tester
2 weeks ago
Hyderabad, India BreachLock Inc Full timeJob Overview:We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a crucial role in staying ahead of emerging threats through proactive security...
-
Penetration Tester
2 weeks ago
Hyderabad, India BreachLock Inc Full timeJob Overview:We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a crucial role in staying ahead of emerging threats through proactive security...
-
Penetration Tester
2 weeks ago
Bangalore/Pune/Kerala/Hyderabad/Karnataka/Riyadh, India LEGPRO CONSULTANT PVT LTD Full timePosition Overview :Hiring for - Penetration TesterWe are searching for a skilled and seasoned Penetration Tester to join our cybersecurity team in the UAE. In this role, you will be tasked with assessing and uncovering vulnerabilities within the systems, networks, and applications of our clients. Your expertise will be pivotal in fortifying...
-
Penetration Tester
1 day ago
Hyderabad, India NopalCyber Full time· Conducting and coordinating comprehensive Attack Surface Discovery, Penetration tests and Cloud on system and network levels, employing advanced ethical hacking techniques.Application Penetration Testing (Browser-based, API, Mobile, IoT)Threat ModelingSource Code ReviewPerform penetration testing on web applications and APIs (internal and...
-
Penetration Tester
6 hours ago
hyderabad, India NopalCyber Full timeJob Statement: NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Managed extended detection and response (MXDR), attack surface management (ASM), breach and attack simulation (BAS), and advisory services fortify your cybersecurity across both offense and defense. AI-driven...
-
Penetration Tester
10 minutes ago
Hyderabad, India NopalCyber Full timeJob Statement: NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Managed extended detection and response (MXDR), attack surface management (ASM), breach and attack simulation (BAS), and advisory services fortify your cybersecurity across both offense and defense. AI-driven...
-
Penetration Tester
2 weeks ago
Hyderabad, India Foundever Full timeThis position involves performing security vulnerability assessment and penetration testing. Penetration tests will involve a mixture of environments, including network devices, servers, systems, databases and applications that are web-based, server-based and virtual. The successful candidate will work effectively in both individual and team environments....
-
Penetration Tester
1 day ago
Hyderabad, India NopalCyber Full timeJob Description· Conducting and coordinating comprehensive Attack Surface Discovery, Penetration tests and Cloud on system and network levels, employing advanced ethical hacking techniques.Application Penetration Testing (Browser-based, API, Mobile, IoT)Threat ModelingSource Code ReviewPerform penetration testing on web applications and APIs...
-
Penetration Tester
3 weeks ago
Hyderabad, India Foundever Full timeThis position involves performing security vulnerability assessment and penetration testing. Penetration tests will involve a mixture of environments, including network devices, servers, systems, databases and applications that are web-based, server-based and virtual. The successful candidate will work effectively in both individual and team environments....
-
Penetration Tester
3 weeks ago
hyderabad, India Foundever Full timeThis position involves performing security vulnerability assessment and penetration testing. Penetration tests will involve a mixture of environments, including network devices, servers, systems, databases and applications that are web-based, server-based and virtual. The successful candidate will work effectively in both individual and team environments....
