IT Infrastructure & Cybersecurity Engineer (VAPT Specialist)

Company Description

With over 15 years of expertise in industrial process automation, ASM Process Automation is a market leader dedicated to innovation and excellence. The company specializes in defining, developing, and deploying advanced process automation solutions, helping clients achieve sustainable business growth. ASM is renowned for providing high-quality, reliable services that give clients a competitive edge across various industries. Based on a foundation of innovation and precision, ASM is committed to driving progress and creating impactful solutions.

Role Overview

We are seeking an experienced IT Infrastructure & Cybersecurity Engineer with dual expertise in enterprise IT/OT networking, server and PC hardware engineering, and penetration testing (VAPT). The ideal candidate will manage infrastructure systems while executing advanced cybersecurity assessments. Strong knowledge of server assembly, hardware components (CPU, RAM, storage, processors), and enterprise-grade networking is essential.

Key Responsibilities

1. IT Infrastructure & Server Hardware Management

• Install, configure, and maintain Windows Server environments (2016/2019/2022).
• Manage Active Directory, DNS, DHCP, GPO policies.
• Handle virtualization platforms (VMware / Hyper-V).
• Perform system hardening and patch management.
• Assemble and configure servers, clients, and desktops based on workload requirements.
• Select and integrate hardware components (hard disks, RAM, processors, GPUs).
• Diagnose and repair hardware faults; maintain IT asset documentation and inventory.
• Manage backup solutions and disaster recovery processes.

2. OT/IT Networking & Systems Engineering

• Configure and troubleshoot LAN/WAN networks across IT and OT environments.
• Manage switches, routers, firewalls, and VPNs.
• Implement VLANs, routing, ACLs, NAT, IPSec/SSL VPN.
• Monitor network performance and resolve bottlenecks.
• Perform packet analysis using Wireshark or similar tools.

3. Cybersecurity & Penetration Testing (Core Requirement)

Vulnerability Assessment & Penetration Testing (VAPT):

• Conduct internal and external penetration testing for IT/OT networks.
• Perform web application security testing (OWASP Top 10).
• Identify misconfigurations in Windows AD environments.
• Conduct privilege escalation and lateral movement testing.
• Perform password security testing and brute-force simulations.
• Prepare professional VAPT reports with CVSS scoring and remediation recommendations.

Security Implementation:

• Deploy and manage EDR/Antivirus solutions.
• Configure firewalls and IDS/IPS.
• Conduct vulnerability scans using Nessus / Qualys / OpenVAS.
• Implement endpoint hardening and access control policies.

Required Qualifications

• Bachelors degree in IT / Computer Science / Cybersecurity.
• 36 years of experience in IT infrastructure and cybersecurity.
• Minimum 2 years of hands-on VAPT experience.
• Strong understanding of TCP/IP, routing, DNS, DHCP, VPN, VLAN.
• Solid knowledge of Windows & Linux security.
• Expertise in server assembly and hardware engineering (hard disks, RAM, processors, full server builds).

Mandatory Certifications (At least 1 Offensive Certification Required)

• CEH (Certified Ethical Hacker)
• OSCP (Offensive Security Certified Professional)
• eJPT

Additional Preferred Certifications

• CompTIA Security+
• CISSP
• CCNA

Technical Skills

• Windows Server Administration
• Linux fundamentals
• Firewall management (Fortinet / Sophos / Cisco preferred)
• VAPT tools: Kali Linux, Metasploit, Burp Suite, Nmap
• Vulnerability scanning tools: Nessus / Qualys
• Basic scripting: PowerShell / Bash
• Server hardware assembly and configuration expertise