Junior Penetration Tester

ISA is a premier technology solution provider for the Aviation industry. We are backed by Air Arabia and headquartered in Sharjah, UAE, while the Research and Development center is located in Colombo, Sri Lanka and Pune, India. Smartworks Building, Nexa Soft, Core Ops,5th Floor, 43EQ, Survey No 44, PLOT A, H. Ravindranath Tagore School of Excellence, Balewadi, Pune, Maharashtra

Job Title: Security Engineer (Penetration Tester)

Job Type: Full-time

Reports To: Security Architect

The ideal candidate will be responsible for firewall and endpoint security, WAF implementation, VAPT, fraud investigation, dark web monitoring, brand monitoring, email security, and compliance enforcement . The role requires expertise in securing IT infrastructure, conducting risk assessments, ensuring compliance, and implementing Microsoft security layers to strengthen the organization's security posture.

Deploy and maintain Web Application Firewalls (WAF) for web security (Cloudflare, Imperva, AWS WAF).

Implement Endpoint Detection & Response (EDR) solutions like Microsoft Defender for Endpoint, CrowdStrike, SentinelOne .

Conduct regular firewall rule audits, optimize configurations, and enforce Zero Trust principles .

Microsoft Security Layer Implementation

Microsoft Email Security

Configure and manage Microsoft Defender for Office 365 to protect against phishing, malware, and email threats.

Implement Safe Links, Safe Attachments, and Anti-Phishing policies .

Monitor and respond to email security alerts in Microsoft Security Portal .

Microsoft Endpoint Security

Deploy and manage Microsoft Defender for Endpoint (MDE) to protect corporate devices.

Configure endpoint compliance policies using Microsoft Intune .

Implement DLP (Data Loss Prevention) policies to prevent data exfiltration.

Compliance & Risk Management

Implement and monitor Microsoft Purview Compliance Manager for risk assessment.

Enforce Information Protection & Encryption Policies using Microsoft Purview.

Configure and manage Conditional Access Policies in Microsoft Entra ID .

Dark Web Monitoring & Brand Protection

Monitor dark web forums, marketplaces, and underground networks for stolen credentials, data leaks, and insider threats.

Implement dark web intelligence tools such as Recorded Future, Digital Shadows, or Microsoft Defender Threat Intelligence.

Work with threat intelligence platforms to detect and respond to brand impersonation, phishing sites, and fraudulent domains .

Collaborate with legal and compliance teams to enforce takedowns of malicious content.

Investigate fraud incidents, phishing attempts, and business email compromise (BEC) .

Conduct forensic analysis on compromised endpoints, servers, and email accounts.

Develop and implement threat intelligence and threat hunting processes.

VAPT & IT Security Operations

Perform Vulnerability Assessments & Penetration Testing (VAPT) on infrastructure, applications, and cloud environments.

Work with teams to remediate vulnerabilities and harden IT assets.

IT Security & Compliance Management

Develop and enforce security policies, standards, and procedures .

Implement Zero Trust Architecture and IAM policies .

Conduct security awareness training and phishing simulations.

Firewall & Network Security: Palo Alto, Fortinet, Cisco ASA, Check Point

Microsoft Security Stack: Defender for Endpoint, Defender for Office 365, Intune, Purview Compliance

Endpoint Security & EDR: Microsoft Defender, CrowdStrike, SentinelOne

WAF & Web Security: Imperva, AWS WAF, Akamai, Cloudflare

VAPT & Red Teaming: Burp Suite, Nessus, Metasploit, Kali Linux, OWASP ZAP

SIEM & Threat Intelligence: Microsoft Sentinel, Splunk, QRadar, ELK Stack, MITRE ATT&CK

Cloud Security: Azure Security Center, AWS Security Hub, GCP Security Command Center

IAM & Zero Trust: Okta, Microsoft Entra ID, Conditional Access Policies, PAM

Dark Web & Brand Monitoring: Recorded Future, Digital Shadows, Microsoft Defender Threat Intelligence

CISSP – Certified Information Systems Security Professional

CEH – Certified Ethical Hacker

CISM/CISA – Certified Information Security Manager/Auditor

Microsoft Certified: Cybersecurity Architect (SC-100)

Microsoft Certified: Security Operations Analyst (SC-200)

Microsoft Certified: Information Protection Administrator (SC-400)

Experience Required:

#5+ years of experience in IT Security, Cybersecurity, and Threat Intelligence .

#Strong experience in fraud investigation, dark web monitoring, and brand protection .

#Proven ability to secure cloud, hybrid, and on-premise environments .

.

---