Attack Surface Reduction Senior Analyst

Company Description

We are a consulting company with a bunch of technology-interested and happy people!

We love technology, we love design and we love quality. Our diversity makes us unique and creates an inclusive and welcoming workplace where each individual is highly valued.

With us, each individual is her/himself and respects others for who they are and we believe that when a fantastic mix of people gather and share their knowledge, experiences and ideas, we can help our customers on a completely different level.

We are looking for you who is immediate joiner and want to grow with us!

With us, you have great opportunities to take real steps in your career and the opportunity to take great responsibility.

Job Summary:

We are seeking a skilled and experienced Attack Surface Reduction Analyst with a strong foundation in penetration testing and vulnerability management to join our dynamic cybersecurity team. In this role, you will be instrumental in identifying and mitigating security risks across our systems, applications, and network infrastructure. You will also lead internal and third-party penetration testing initiatives and work closely with cross-functional teams to strengthen our overall security posture.

Key Responsibilities

• Conduct comprehensive vulnerability assessments (VA) and penetration tests (PT) on systems, applications, and networks.
• Identify and assess security vulnerabilities using industry-standard tools and methodologies.
• Design and manage vulnerability management processes and drive effective remediation strategies.
• Coordinate and manage third-party penetration testing engagements and ensure alignment with security goals.
• Collaborate with IT and business teams to prioritize and remediate identified risks.
• Contribute to the development and maintenance of security policies, procedures, and standards.
• Continuously monitor systems for unauthorized access, suspicious activities, and emerging threats.
• Stay abreast of evolving cybersecurity trends, threat landscapes, and best practices in attack surface reduction.

Required Qualifications

• Bachelors degree in Computer Science, Information Security, or related field.
• 3 to 5 years of hands-on experience in vulnerability scanning, penetration testing, and vulnerability management.
• In-depth knowledge of common vulnerabilities and exposures (CVEs) and attack vectors.
• Proficiency with tools such as Kali Linux, Qualys, Burp Suite, and other VA/PT platforms.
• Familiarity with security frameworks and standards (e.g., NIST, OWASP Top 10, CIS Controls).
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills, including the ability to explain technical issues to non-technical stakeholders.

Preferred Certifications

(Certifications are a plus but not mandatory)

• OSCP, OSEP, SANS GIAC, CREST, CompTIA Security+, or similar.

Start: Immediate
Location: Bangalore
Form of employment: Full-time until further notice, we apply 6 months probationary employment.

We interview candidates on an ongoing basis, do not wait to submit your application.