Penetration Tester

Job Description - Penetration Tester (240000HL)
- Job Number: 240000HL
Requisition Title : Penetration Tester

**Description**:

**Your team responsibilities**

Penetration Tester & Python Developer

**What we offer you**
- At MSCI we are passionate about what we do, and we are inspired by our purpose - to power better investment decisions. You’ll be part of an industry-leading network of creative, curious, and entrepreneurial pioneers. This is a space where you can challenge yourself, set new standards and perform beyond expectations for yourself, our clients, and our industry.
- Wherever you are located you will find transparent compensation schemes and employee benefits that can help ensure your financial security and health. While they vary by different locations, we offer a broad range of benefits that are part of the value you receive as an MSCI employee.
- Our flexible ways of working will allow you to maximize your potential, and we will empower you with the trust, accountability, and advanced technology to perform at your very best.
- You’ll find a purposeful approach to wellbeing to provide you with all the resources you need to be your best at work and in your personal life. Our ‘Here For You’ Employee Assistance Program is available for our employees globally, providing confidential emotional support, financial and legal advice free of charge.

**Your key responsibilities**
- Manage the execution of penetration tests performed by MSCI vendors.
- Under the direction of senior AppSec staff, perform internal penetration tests:

- Document findings and recommend remediation strategies
- Collaborate with Cybersecurity and Engineering Teams to enhance security protocols.
- Conduct Security Assessments and Risk Analysis
- Develop and maintain security testing plans and protocols
- Performing operational tasks and engaging in proactive research and exploration of new technologies aligned with team objectives

**Your skills and experience that will help you excel**
- A moderate understanding of modern cloud and on-premises infrastructure concepts, encompassing federated authentication and authorization (OAuth experience is beneficial), Active Directory, networking essentials (such as VNets, routing, switching, advanced firewalls), DNS management, databases, middleware, and Linux administration.
- Experience with cloud environments and configurations (Azure, GCP, AWS) is beneficiary
- Strong understanding of network protocols, cryptography, and security vulnerabilities
- Strong written and verbal communication skills in English and basic project management skills
- Advanced cybersecurity certification (e.g.: eJPT, eCPPT, OSCP, OSWA, GIAC GPEN, GIAC GWAPT) is a plus, but not a requirement. Strong knowledge on Linux is required (LPIC-1, LPIC-2 is preferred). Prefer to additionally have a BS in Computer Science or Computer Engineering

**How we’ll support you**
- Our culture of high performance and innovation relies on our people sharing their knowledge and lifting each other up. You’ll be surrounded by a collaborative, global network of talented colleagues who will support and inspire you to do the best work of your career.
- We believe new and challenging experiences drive personal growth and innovation. With the right challenges, encouragement, and development support you can shape your own career experience. Career paths are multi-directional, and we encourage and support internal mobility to help you identify new opportunities to progress and take control of your future.
- As a new joiner you’ll be enrolled on our Global Orientation interactive learning experience to set you up for success.
- At MSCI we act in ways that encourage respect for all voices, ensuring that everyone can be themselves and feel like they are a part of the company. We are intentional about ensuring that everyone is treated fairly and supported with equal opportunities to succeed.
- We have eight MSCI Employee Resource Groups: All Abilities, Asian Support Network, Black Leadership Network, Climate Action Network, Hola MSCI, Pride & Allies, Women in Tech, and Women’s Leadership Forum.

**About MSCI**

MSCI is a leading provider of critical decision support tools and services for the global investment community. With over 50 years of expertise in research, data, and technology, we power better investment decisions by enabling clients to understand and analyze key drivers of risk and return and confidently build more effective portfolios. We create industry-leading research-enhanced solutions that clients use to gain insight into and improve transparency across the investment process.

**To all recruitment agencies**

MSCI does not accept unsolicited CVs/Resumes. Please do not forward CVs/Resumes to any MSCI employee, location, or website. MSCI is not responsible for any fees related to unsolicited CVs/Resumes.

**Note on recruitment scams**

**Job**: Technology
- **Primary Location**: India-Maharashtra-Pune
- **Job