Security Testing

Position Title: Security testing

**Tier**:Tier 2**:
Primary skill - AAA, Radius, Checkmarx, Appscan, Nessus

Key Responsibilities
Security Testing & Vulnerability Assessment
1. Conduct security testing for device activation and authorization processes for various customer cohorts:
DHCP customers
Static IP customers
BYOR (Bring Your Own Router) customers
Nonpay Lobby customers
Free basic customers
2. Perform penetration testing on CPE (Customer Premises Equipment) activation through DHCP.
3. Conduct security audits of AAA (Authentication, Authorization, and Accounting) systems to prevent unauthorized access and data breaches.
4. Validate the security of real-time billing status views in BSS, ensuring accurate data flow from AAA to BSS.
6. Test and validate automation processes for claim processing and resolution.
7. Evaluate security measures for tracking FCAS (Fraud, Compliance, and Assurance System) incidents on a dashboard.
8. Ensure subpoena correlation data is displayed securely to LIS (Lawful Interception System) teams with proper PII protection.
Compliance & Regulatory Security Testing
9. Validate security implementation of Utimaco to comply with the Communications Assistance for Law Enforcement Act (CALEA).
10. Conduct risk assessment on BNG (Broadband Network Gateway) provisioning changes that allow law enforcement access to user traffic.
11. Ensure all RADIUS packets for targeted customers are securely copied to the CALEA server.
12. Validate data encryption and secure storage mechanisms to retain accounting records for 7 years for 6M devices.
Service Assurance Security Testing
13. Perform security testing of Network Operations Center (NOC) monitoring and alerts across:
Alepo AAA server
Utimaco (CALEA)
FCAS (Fraud, Compliance, and Assurance System)
LIS (Lawful Interception System)
14. Conduct security audits on Okta integration for access management, ensuring role-based access to:
Alepo-related GCP resources
Alepo AAA EMS Web GUI
Network Controller (NC) for obtaining authentication tokens to communicate with Alepo NBI.
General Security Responsibilities
16. Develop and execute test cases for API security, network security, and data access controls.
17. Perform security validation of cloud-based GCP (Google Cloud Platform) instances.
18. Implement security automation for continuous vulnerability scanning and compliance monitoring.
19. Collaborate with development, DevOps, and security teams to ensure security best practices.
20. Document findings, security test reports, and mitigation recommendations

**AboutVirtusa**

Teamwork, quality of life, professional and personal development: values that Virtusa is proud to embody. When you join us, you join a team of 21,000 people globally that cares about your growth — one that seeks to provide you with exciting projects, opportunities and work with state of the art technologies throughout your career with us.

Great minds, great potential: it all comes together at Virtusa. We value collaboration and the team environment of our company, and seek to provide great minds with a dynamic place to nurture new ideas and foster excellence.

Virtusa was founded on principles of equal opportunity for all, and so does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit, and business need

**About Virtusa**

Teamwork, quality of life, professional and personal development: values that Virtusa is proud to embody. When you join us, you join a team of 27,000 people globally that cares about your growth — one that seeks to provide you with exciting projects, opportunities and work with state of the art technologies throughout your career with us.

Great minds, great potential: it all comes together at Virtusa. We value collaboration and the team environment of our company, and seek to provide great minds with a dynamic place to nurture new ideas and foster excellence.

Virtusa was founded on principles of equal opportunity for all, and so does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. All employment is decided on the basis of qualifications, merit, and business need.