Cyber Security Consultant - Penetration Testing

Job Title : Cybersecurity Consultant Location : [Specify Location or Remote] Job Type : Overview : We are seeking highly skilled Cybersecurity Consultants with strong technical expertise to work on a project-based approach. The ideal candidate will have a proven track record in penetration testing, vulnerability assessments, and cloud security while demonstrating a deep passion for cybersecurity through active participation in the security community. Key Responsibilities : Perform penetration testing and vulnerability assessments on web applications, networks, and cloud environments. Conduct code reviews to identify security flaws and provide remediation strategies. Develop custom security tools and methodologies to improve testing efficiency. Identify and report security vulnerabilities (CVE submissions), if applicable. Stay up-to-date with emerging threats, attack techniques, and defensive strategies. Provide technical reports and presentations to stakeholders, translating security risks into business impact. Implement and enhance AWS and Azure cloud security best practices. Participate in cybersecurity conferences, forums, and research projects. Key Candidate Requirements : Certifications (Preferred) : OSCP (Offensive Security Certified Professional) OSWE (Offensive Security Web Expert) CWEE (Certified Web Exploitation Expert) Burp Suite Certified Professional (BSCP) (CEH is not considered a differentiator as it is relatively easy to obtain.) Technical Expertise : Hands-on experience in recent penetration testing (not just past experience from years ago). Expertise in web application security, API security, and network security. Strong knowledge of exploitation techniques, vulnerability research, and red teaming. Experience in cloud security with AWS and Azure. Proficiency in scripting languages (Python, Bash, PowerShell, etc.). Familiarity with tools like Burp Suite, Metasploit, Nmap, and custom security tools. Community Engagement (Preferred) : Active GitHub presence showcasing security tools and contributions. CVE publications demonstrating vulnerability research (preferred but not mandatory). Conference participation (e.g., Nullcon, Black Hat, DEF CON, etc.). (ref:hirist.tech)

Location: bangalore, IN

Posted Date: 5/1/2025