Senior Security Engineer

This role is for one of the Weekday's clients

Key Responsibilities:

• Conduct penetration testing (PT) for web and mobile applications, network VAPT, source code reviews, and wireless security assessments.
• Perform red teaming activities to identify security vulnerabilities and assess overall security posture.
• Research and analyze emerging attack vectors, providing insights into potential security risks.
• Prepare and deliver detailed reports on vulnerability assessment and penetration testing (VAPT) findings.
• Collaborate with clients to understand their security requirements and provide tailored security solutions.
• Build and maintain strong working relationships with stakeholders to ensure security best practices are implemented effectively.

Requirements

Certifications:

Mandatory:

• CREST CPSA & CRT certified

Preferred:

• OSCP, OSWA, PNPT, eJPT, eCPPTv2, or other relevant security certifications.

Educational Qualifications:

• BCA / B.Tech / B.Sc – Computer Science / Information Security / Cyber Forensics
• M.Sc – Information Security / Cyber Forensics

Experience & Skills:

• Minimum 3+ years of hands-on experience in security testing, including:
• Web application penetration testing
• Network VAPT and Active Directory penetration testing
• Mobile application penetration testing (Android & iOS) and thick client security assessments
• Expertise in manual security testing and proficiency with tools such as Burp Suite Pro, WebInspect, Acunetix.
• Strong experience in secure code review (manual and automated).
• Good programming skills in at least one language.
• In-depth knowledge of OWASP security standards and common security vulnerabilities.
• Exposure to red teaming activities is a plus.
• Excellent communication, analytical, and problem-solving skills, with the ability to present findings effectively.