Sr. Security Consultant
Department: Cyber Resilience
Requirement :
Vulnerability Assessment, Penetration Testing, API Testing, Essential
Skills/Certifications: OSCP, CEH, ECSA, CRTP, PNPT, CRTA.
OSCP Certified, CREST Certified is an added advantage
Roles Responsibility:
- Basic understanding of network traffic analysis including TCP/IP, routing, switching, protocols, etc.
- Basic understanding of OSI TCP/IP Model.
- Basic understanding of different ports and services.
- Basic understanding of OWAP TOP 10
- Basic understanding of SANS TOP 25
- Basic understanding of various security tools like sqlmap, BurpSuite, Nessus, OpenVAS, etc.
- Basic understanding on vulnerability assessment and penetration testing
- Able to perform exploitation activities for different vulnerabilities.
- Able to demonstrate different business logic vulnerabilities.
- Able to perform application security testing including web applications, mobile applications, API thick client applications.
- Able to perform configuration reviews using CIS Benchmarks and NIST Frameworks.
- Able to perform infrastructure penetration testing on identified ports and services.
- Able to perform source code review for languages like Java, .Net, python, ReactJS, Kotlin, Iconic, etc.
- Able to perform active directory penetration testing.
- Good understanding of cloud providers such as AWS, Azure GCP.
- Able to perform open-source intelligence (OSINT) assessments.
- Able to perform Phishing assessments.
- Good communication interpersonal skills.
- Good reporting skills.
- Collaborate and assist within team member for various day to day activities.
- Good to have certifications like CEH, eJPT, OSCP, eCPPT, Pentest