Penetration Tester

About the Job
- Responsibilities and Day-to-Day View:

- Conduct, lead and handoff incident response activities (triage, communications, containment, root cause analysis, remediation)
- Assess, triage and prioritize security detections from logs and monitoring alerts for suspicious or anomalous activity including bot traffic
- Research, design, and develop solutions meeting internal and external compliance, security requirements and standards for Site Security & Reliability Engineering
- Drives defense-in-depth security for the organization to protect critical IT assets and data
- Understands cryptography and encryption of data stored and transmitted.
- Logging, monitoring, and responding to detected incidents.
- Serving as the voice of the customer to the development and system support teams in implementing new features or resolving security issues that exist in technology implementations.

Required Qualifications
- Ability to conduct creative and in-depth manual security testing (ethical hacking).
- Identifies critical security gaps and drives them to resolution within required timelines.
- Ability to write and develop security and infrastructure Security standards and requirements
- Ability to use automated scans to identify security vulnerabilities and configuration gaps
- Exceptional ability to communicate and drive progress on compliance by influencing action owners and tracking progress with reports, dashboards and other tracking mechanisms.
- Ability to program and automate communications and notifications to action owners
- At least 2-4 years’ experience in working in Azure cloud, information security, PCI and SOC compliance
- Perform security analysis of cloud configurations
- Experience in Application Security Testing, using automated SAST Scanners (Veracode Preferred), DAST Scanners (AppScan Enterprise Preferred) and Pen Testing tools, like BurpSuite.
- Familiarity with investigative technologies such as log analysis, HTTP debugging tools
- Familiarity with tools such as Splunk, EFK, Dynatrace, QuantumMetric, and any Web Application Firewall (WAF)
- Preferred Qualifications
- Master’s Degree in Marketing, Computer Science, Information Systems or related field
- At least 2-4 years’ experience in working with Cloud Security Configurations or Azure Systems Administration Experience
- At least 4-6 years’ experience in information security
- At least one of the following security certifications:

- OSWE (web app focused)
- OSCP (systems/network focused)
- CISSP (general security)
- CEH (general security)
- Azure AZ-500 Security Engineer Certified
- Certified Information Systems Auditor (CISA)/ Certified Information Systems Auditor (CISM)
- Experience in a large enterprise retail or consumer organization
- Contribution to open source projects

**Job Category**:Digital_Cloud_Web Technologies**Job Type**:Full Time**Job Location**:Anywhere in India**Experience**:7-11 Years**Notice period**:0-30 days