Requirement:
- Candidate should have CVE IDs or Research Paper Submission on the National & International Conferences
- Candidate should have Bug Bounty or hall of fames from major companies
- Candidate should be an active CTF Player of HackTheBox.
- Candidate Must be a team player with Multi-tasking capabilities to handle multiple tasks at a time
- Hands-on experience on the following:
- Advanced Web Application Penetration Testing
- API Penetration Testing (SOAP & REST)
- Mobile Application Penetration Testing (Android & IOS)
- Cloud Infrastructure & Application Penetration Testing
- Advanced Network Penetration Testing:
- Network Vulnerability Assessment & Penetration Testing
Primary Responsibilities
- Performing VAPT Activites such as Network, Web, Mobile, API & Cloud Penetration Testing
- Preparing the Detailed Reports on the identified Vulnerabilities
- Preparing the detailed Workaround/Mitigations of the vulnerabilities while reporting to the client
- Detailed Discussion with Clients on the vulnerabilities & Mitigations as per their feasibility
- Writing Technical Blogs on the latest vulnerabilities or technologies in the market
- Giving Technical Talks to the internal team on the latest technologies and approach for different applications/networks
- Giving Webinars on the latest technologies or vulnerabilities
- Research on finding Zero-days on the applications/products in the market
- Travelling Abroad for Onsite Assesments or opportunities
Qualifications
- Knowledge of TCP/IP, OSI Layer, IPv4 & IPv6, Network Protocols and Wireless Communication skills preferred
- Knowledge of at least one programming language such as Java, C#, C, C++
- Knowledge of at least one scripting language such as python, shell script, javascript and good command to write automated tools & scripts during the Pentesting process.
- Candidate Must be able to write their own tools & scripts as when required
- Advanced knowledge of multiple operating systems (Windows, Linux, BSD, etc.)
- Familiarity with Advanced Persistent Threat (APT) activity; Offensive hacker mindset preferred
Skills:
- Excellent technical writing skills and attention to detail
- Able to give training and communicate vulnerabilities to developers/managers
- Ability to be agile and work in a fast paced environment
- Excellent written and verbal communication skills
Education/Certifications:
- Bachelor Degree in Computer Science or equivalent.
- OSCP, CEH or other relevant industry certification
About the Firm:
SecureLayer7 is an 9-year-old, Pune based, ISO 27001 certified, and Cert-IN empanelled cybersecurity solution provider.
A Security Consulting Company specializing in Penetration Testing, Vulnerability Assessments, Malware Removal, Web Application Penetration Testing. SecureLayer7 has also introduced AuthSafe to protect end-user online accounts and identities account takeover and credential stuffing attacks. The idea behind the product AuthSafe is to predict, detect, prevent, and respond to online
fraud attacks in real-time using our cognitive engine.
Send in your applications to
job@securelayer7.net