We are looking for an experienced Associate Security Consultant with expertise in vulnerability assessments (VA) and penetration testing (PT) for web, mobile, and network applications. This role requires knowledge of industry security standards like OWASP Top 10, SANS 25, and CIS benchmarks to identify and resolve security vulnerabilities.
In this role, you will conduct automated and manual VA/PT on internal and external networks using advanced tools like Nessus, Kali Linux, and other open-source solutions. You will perform black-box, grey-box, and white-box testing methodologies to detect vulnerabilities and mitigate potential risks. Additionally, you’ll conduct device configuration reviews and ensure adherence to security policies by analyzing and hardening operating systems, network devices, databases, and web servers.
You’ll collaborate with senior management and incident response teams, providing detailed security assessments, gap analyses, and actionable audit reports. You will also be responsible for researching the latest vulnerabilities and exploits, ensuring the organization stays ahead of emerging security threats.
The ideal candidate should hold certifications such as OSCP, CEH, or CREST, and have hands-on experience with network-based vulnerability scans. Knowledge of handling false positives and strong communication skills to explain security issues to both technical and non-technical stakeholders is essential.
If you are passionate about cyber security, have a deep understanding of web-based attacks and mitigation strategies, and thrive in a fast-paced environment, we encourage you to apply.