IN Senior Associate Penetration Testing Application Technology-MS Engg -Advisory-Gurgaon

Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

Microsoft

Management Level

Senior Associate

Job Description & Summary

At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.

Those in penetration testing at PwC will focus on penetration testing (or pen testing) which is a security exercise where a cybersecurity consultant attempts to find and exploit vulnerabilities in a computer system. The purpose of this simulated attack is to identify any weak spots in a system's defences which attackers could take advantage of.

Why PWC

At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us.

At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations.

Job Description & Summary: Strong knowledge of web application security testing, API security testing · Strong knowledge of Industry standard application security tools – Burp Suite, Nmap, Zap proxy · Strong knowledge of Industry standard DAST tool (example: NetSparker) · Strong knowledge in both static and dynamic assessments for desktop and mobile applications · Strong knowledge in manual and automated testing process, focusing on OWASP methodology · Strong Knowledge of vulnerability identification and remediation methodology. · Knowledge of vulnerability assessments of network and security devices · Strong knowledge of open source and commercial tools, proficient in Kali Linux based tools

Responsibilities:

Strong knowledge of web application security testing, API security testing · Strong knowledge of Industry standard application security tools – Burp Suite, Nmap, Zap proxy · Strong knowledge of Industry standard DAST tool (example: NetSparker) · Strong knowledge in both static and dynamic assessments for desktop and mobile applications · Strong knowledge in manual and automated testing process, focusing on OWASP methodology · Strong Knowledge of vulnerability identification and remediation methodology. · Knowledge of vulnerability assessments of network and security devices · Strong knowledge of open source and commercial tools, proficient in Kali Linux based tools.

Mandatory skill sets:

VAPT, web application security testing, API security testing

Preferred skill sets:

mobile security testing, DAST, penetration testing

Years of experience required:

3+ Yrs

Education qualification:

BTech/BE/MTech from reputed institution/university as per the hiring norms

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required: Bachelor of Engineering, Master of Engineering

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Required Skills

Security Testing

Optional Skills

Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Bash (Programming Language), Common Vulnerability Scoring System (CVSS), Communication, Creativity, Cybersecurity, Embracing Change, Emotional Regulation, Empathy, Encryption, Ethical Hacking, Firewall (Network Security), Inclusion, Information Security, Information Security Management System (ISMS), Information Security Risk Assessments, Intellectual Curiosity, Intrusion Detection System (IDS), IT Infrastructure, Kali Linux, Learning Agility, Microsoft Active Directory {+ 25 more}

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Available for Work Visa Sponsorship?

Government Clearance Required?

Job Posting End Date