Technical Specialist
INDIA, Bangalore
⚠️ We'll shut down after Aug 1st - try foo🦍 for all jobs in tech ⚠️
HCLTech
HCLTech - Global technology company, home to 220,000 people across 60 countries, supercharging progress for the world’s top enterprises by bringing together the best of technology and our people.Experience
2.5-5 Years
Skill (Primary)
Technical Skills (ERS)-Cyber Security-Security Testing -Penetration Testing
Qualification
B-Tech
Location
Bangalore
Job Description (Posting).
Responsibilities
Conduct penetration tests across Web applications, APIs, Mobile applications, infrastructure, cloud environments, and devices.
Conduct red team engagements across complex environments (including operational technologies).
Drive all phases of penetration tests and red team engagements, including Scoping, planning, communications, timelines, and execution of key activities (reconnaissance, vulnerability identification, exploitation, and reporting).
Develop in-depth reports (issue, severity, impact, remediation recommendations) for penetration tests and red team engagements.
Develop tools and techniques to automate, scale, and accelerate adversary emulation capabilities and vulnerability discovery.
Develop exploits and POCs to evade defensive countermeasures and emulate threat actor TTPs.
Establish and mature team documentation, processes, procedures, and team KPIs.
Mentor penetration testers, red team members, and other functions where needed to drive unified and holistic outcomes.
Manage third-party pen test and red team engagements to ensure high-quality products and deliverables.
Support offensive security research, innovation, and testing across emerging capabilities (e.g. AI, LLM, ML, NLP, etc.).
Accountabilities
Execute on projects, objectives, and deliverables in alignments with team vision, mission, and goals.
Routinely develop and update offensive security documentation, processes, and technologies to adapt to emerging threat landscape.
Develop automation to scale global offensive capabilities and operational resiliency.
Collaborate with partner teams, service owners, and senior leadership to influence, prioritize, and drive the resolution of discovered security findings.
Create and deliver trainings; and participate in security reviews, audits, on-site engagements, and support incidents after-hours when required.
Qualifications
Years of experience
2+ years of experience in a technical security role (e.g. Penetration Testing, Red Team, Application Security, Infrastructure Security); or bachelor s degree in computer science/engineering or related cyber field, and 2 years of relevant experience.
(1.) To clearly understand the client's cybersecurity environment and respective product. (2.) To monitor, configure, and troubleshoot cybersecurity issues and related monitoring tools (3.) To analyse and validate cybersecurity incidents in-detail and help the L3 team with RCA/data or logs collection (4.) To enable knowledge transfer/trainings through creation/ maintenance of configuration documents, test plans, operational manuals and provide operational training to L1 team. (5.) To analyse and fine-tune cybersecurity policies, participate in cybersecurity review calls pertaining to change requests & recommendations on cybersecurity policy changes. (6.) To implement changes, monitor security device performance and implements performance tuning when necessary. (7.) To prepare analyses and reports to highlight the project progress/challenges and ensure quality and accuracy to the client
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs Application security Audits Automation Cloud Computer Science Exploits KPIs LLMs Monitoring NLP Offensive security Pentesting POCs Red team TTPs
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.