Penetration Tester

**Job Title: Penetration Tester (3-4 years of experience)**
**Location**: Mohali
**Experience
- 3 to 4 years**

**Shift Timings
- 8:30 PM -5:30 AM**

**Job Overview**

**Key Responsibilities**
- ** Vulnerability Assessment**: Conduct vulnerability assessments using a variety of tools (e.g., Nessus, Nexpose, OpenVAS) to identify and evaluate potential threats.
- ** Exploitation Reporting**: Safely exploit identified vulnerabilities to demonstrate their impact and provide clear, actionable recommendations for remediation.
- ** Collaboration**: Work with internal teams, including developers, sysadmins, and IT staff, to assist in addressing security flaws and ensuring that remediation strategies are effectively implemented.
- ** Documentation Reporting**: Create detailed reports that summarize findings, provide risk analysis, and suggest corrective actions, tailored to both technical and non-technical stakeholders.
- ** Continuous Learning Development**: Stay up to date with emerging security trends, new attack techniques, and evolving technologies to improve personal knowledge and overall team capabilities.
- ** Incident Response**: Assist in investigating security incidents and breaches, performing forensics, and helping to identify root causes.

**Qualifications**:
**Required Qualifications**
- 3-4 years of hands-on experience in penetration testing, vulnerability assessments, and security assessments.
- Proficiency in penetration testing tools (e.g., Burp Suite, Kali Linux, Metasploit, Wireshark, Nmap, etc.).
- Strong knowledge of operating systems (Linux, Windows, macOS), networking protocols, and network security concepts.
- Experience with cloud platforms (e.g., AWS, Azure, Google Cloud) and their security challenges.
- Familiarity with security standards and frameworks (e.g., OWASP Top 10, NIST, CIS).
- Strong communication skills and ability to write clear, concise, and well-organized technical reports.
- Ability to work independently and collaboratively in a fast-paced environment.

**Preferred Qualifications**
- Certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), GIAC Penetration Tester (GPEN), or equivalent.
- Experience with source code review and static analysis tools.
- Experience with automated vulnerability scanning tools and continuous security integration.
- Knowledge of scripting and programming languages (e.g., Python, Bash, PowerShell, JavaScript) for automation.

**Additional Information**: