Penetration Tester

Company Overview

Company details not specified.

Job Summary

The Penetration Tester will be responsible for identifying and exploiting vulnerabilities within client systems and applications. This role contributes to enhancing the organization's security posture by performing thorough assessments and collaborating with various teams to remediate identified risks.

Responsibilities

• Conduct penetration tests across web applications, mobile applications, web services/APIs, and networks.
• Utilize manual techniques and testing frameworks according to OWASP and OSSTMM methodologies.
• Exploit identified vulnerabilities such as cross-site scripting, SQL injections, session hijacking, and buffer overflows.
• Collaborate with network, infrastructure, and application development teams to address security findings and validate assessment results.
• Document significant exposures and recommend appropriate security measures.
• Develop and maintain formal reporting processes to communicate findings and recommendations to peers and senior management.
• Contribute to the Software Development Life Cycle (SDLC) by testing new application systems and infrastructure.

Qualifications

• 2 to 6 years of hands-on experience in penetration testing.
• Proficiency with penetration testing tools such as Burp Suite, Metasploit, and Nessus.
• Strong understanding of networking protocols, web application architectures, and operating systems.
• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Critical thinking and good problem-solving abilities.
• Effective communication skills, both written and verbal, for articulating security issues to non-technical stakeholders.
• Knowledge of current information security threats and understanding of coding best practices and standards.

Preferred Skills

• Certification in CEH (Certified Ethical Hacker) or OSCP (Offensive Security Certified Professional) is desired.
• In-depth knowledge of application development processes and at least one programming or scripting language (e.g., Java, Scala, C#, Ruby, Perl, Python, PowerShell) is preferred.
• Organized planning and time management skills.

Experience

• Minimum 2 years and maximum 6 years of relevant experience in penetration testing.

Environment

• Base location: Bengaluru.
• Work timings are set to a general shift from 7:30 AM to 4:30 PM.

Salary

Salary details not specified.

Growth Opportunities

Career advancement opportunities within the company not specified.

Benefits

Benefits offered not specified.