1. Home
  2. CyberSecurity - Penetration testing

Offers “Dxc Technology”

Expires soon
Dxc Technology

CyberSecurity - Penetration testing

  • Internship
  • Bangalore (Bangalore Urban)
Apply Now

Job description


·  Job Description:

Knowledge/Skills Required

·      Bachelor’s degree in Computer Science, Engineering, or related field or equivalent work experience. May hold Master's or advanced degree in related field

·      5+ years of professional experience

·      Penetration testing skills including the use of security assessment and hacker tools; e.g. BURP, AppScan, Fortify, Wireshark, nmap, netcat, ZAP, FireBug, Nessus, John the Ripper

·      IT security knowledge

·      Good to have Experience with vulnerability scanning tools (Nessus, Qualys, InsightVM, AppScan,etc).

·      TCP/IP networking

·      Windows and Unix/Linux operating systems

·      Web-based applications and services (SOAP/REST)

·      Development skills, preferably including one or more of C/C++/C#, Python, Ruby, Perl, PHP, ASP, JSP, Java, JavaScript/ AJAX, XML/JSON

·      Familiarity with databases; e.g. MS-SQL, MySQL, Oracle

·      Understanding of common TCP/IP protocols; e.g. HTTP, HTTPS, SMTP, Telnet, FTP, SNMP

·      Demonstrated knowledge of common vulnerability frameworks (CVSS, OWASP Top 10).

·      Mobile Security

Core competencies & Knowledge:

-      Hands on experience with monitoring, identification and exploiting security vulnerabilities in web-based applications, networks and systems to perform Pentest.

-      Capability to understand and analyse Security policies

-      Experience in Planning / Reconnaissance/conducting both Static and Dynamic analysis

-      Should follow protocols on gaining access while performing pen test

-      Conduct physical security assessments of servers, systems and network devices.

-      Perform Vulnerability Scans, Provide analysis and Remediation wherever necessary, Conduct penetration testing, identify vulnerabilities, and provide remediation steps

-      Probe for vulnerabilities in web applications, fat/thin client applications and standard applications

-      Pinpoint methods that attackers could use to exploit weaknesses and logic flaws

-      Incorporate business considerations into security strategies

-      Research, document and discuss security findings with management and IT teams

-      Review and define requirements for information security solutions

-      Ability to conduct security infra audit

-      Performing comprehensive security testing that includes the identification, reporting, and
recommendations for identified vulnerabilities.

-      Conducting attack surface reviews and recommending layered defences to prevent exploits, detect and intercept attacks, and discover threat agents.

-      Performing complex security test data analysis in support of security vulnerability assessment processes, including root cause analysis.

-      Performing security research on known and unknown vulnerabilities.

-      Implementing processes, capabilities, and techniques for security testing.

-      Responsible for monitoring external vulnerability disclosure and threat intelligence

-      Participate in Security Assessments of networks, systems and applications

-      Work on improvements for provided security services, including the continuous enhancement of existing methodology material and supporting assets

Make every future a success.
  • Job directory
  • Business directory
    •