Просмотр вакансии

REDdy Solutions is looking for a Penetration & Vulnerability Tester who will be responsible for detecting and providing remediation steps for application, system and network vulnerabilities. The analysis should then be presented in a comprehensive report. REDdy Solutions is a revolutionizing penetration and vulnerability testing that provides cybersecurity consulting services to help businesses of all sizes solve complex security issues and bring their protection to the next level. Our growing team of industry experts is ready to offer innovative solutions to any of the challenges that a client faces. REDdy Solutions is a trusted guide on a way to cybersecurity for companies and assets.

Responsibilities:

• Perform system, network, and application penetration tests and vulnerability assessments;

• Contribute to our vulnerability scanning and penetration testing program toolkits, and increase integration and automation of those solutions;

• Assist in the development and execution of attack plans, scripts, tools and methodologies to enhance our offensive operations;

• Imitate tactics and techniques used by modern attackers, including common network and software exploitation;

• Leverage your experience and creativity to perform advanced security assessments on third-party services and software;

• Develop remediation recommendations for identified findings;

• Participate as needed in external penetration testing engagements;

• Research new attack vectors and stay current with cybersecurity news and trends;

• Research new threats, attack vectors, and risks;

• Educate IT staff about hacking techniques, tradecraft, and ways to mitigate them.

Requirements:

• Comprehensive knowledge of Linux, Mac, and Windows operating systems architecture and networking protocols;

• Knowledge of Metasploit Framework, Nessus scanner, OpenVAS, Kali Linux, NMAP, Burp Suite or similar web security tools;

• Familiarity with physical security controls and social engineering exploitation techniques;

• Programming experience in compiled/scripting languages;

• Excellent written and verbal communication skills to draft and present comprehensive penetration testing and security assessment reports;

• Ability to effectively communicate technical concepts to all levels.

Nice to have:

• Certificates like OSCP, OSCE, OSEE, etc.;

• Community contributions like public CVEs, bug bounty recognition, open source tools, blogs, etc.;

• Bachelor's degree in Computer Science/Engineering with emphasis on security related fields (or equivalent experience).