IN-Associate_VAPT_Security Testing_ Advisory _Mumbai
PWC
1 - 10 years
Mumbai
Posted: 25/01/2025
Job Description
Line of Service
AdvisoryIndustry/Sector
FS X-SectorSpecialism
RiskManagement Level
AssociateJob Description & Summary
At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data.As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively.
Job Description & Summary: We are seeking a highly skilled and experienced Cybersecurity/Risk Consulting Senior Associate to join our Risk Consulting team. As a Cybersecurity Senior Associate, you will be responsible for leading and managing a team of consultants to deliver high-quality cybersecurity and risk management services to our clients.
Responsibilities:
Key Responsibilities:
- Good interpersonal skills (written and oral communication) and ability to articulate complex issues
- Ability to communicate technical
- information clearly and concisely, commensurate with the audience
- Conceptual thinking and communication skills — the ability to conceptualize complex business and technical requirements into comprehensible models and templates.
- Good communicator (written and verbal) and listener.
- Must be a team player and motivated self-starter with ability to work independently with limited supervision.
- Must be assertive, methodical and detail oriented
Technical Experience:
- Experience in Web and Mobile Application Security Testing, Vulnerability Assessment and Penetration testing
- Analyze scan reports and suggest remediation / mitigation plan for security vulnerabilities
- Should be aware of tools like Qualys, HP Fortify, IBM Appscan, Burpsuite, Kali Linux suite of tools
- Expertise in mobile apps reverse engineering and in-depth knowledge of Android and iOS ecosystems. Knowledge of industry standard tools for mobile pentest.
- Thorough understanding of OWASP Top 10 vulnerabilities and their mitigations. Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions (proxy, web filtering)
- Conduct penetration test and launch exploits using Nessus, Metaspoilt, kali linux penetration testing distribution tools sets
- Conduct Vulnerability Assessments of Network Devices using various open source and commercial tools
- Map out a network, discover ports and services running on the different exposed network and security devices
- Research and maintain proficiency in computer network exploitation, tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding, network security, and encryption.
- In-depth understanding on Common Vulnerability Exposure (CVE)/ CERT advisory database. Broad background of networks, operating systems (Window, Unix, Linux), firewalls and security engineering concepts.
- Knowledge of scripting languages (Perl, Python, Shell etc) will be added advantage
- Knowledge of Open-Source Security Testing Methodology Manual (OSSTMM)
Mandatory skill sets:
CEH, ECSA, LPT (any one)
Preferred skill sets:
OSCP, OSWE
Years of experience required:
1-10 Years
Education qualification:
B.Tech
Education (if blank, degree and/or field of study not specified)
Degrees/Field of Study required: Bachelor of EngineeringDegrees/Field of Study preferred:Certifications (if blank, certifications not specified)
Required Skills
Vulnerability AssessmentsOptional Skills
Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Azure Data Factory, Communication, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture, Security Compliance Management, Security Control, Security Incident Management, Security Monitoring {+ 3 more}Desired Languages (If blank, desired languages not specified)
Travel Requirements
Not SpecifiedAvailable for Work Visa Sponsorship?
NoGovernment Clearance Required?
NoJob Posting End Date
About Company
PricewaterhouseCoopers (PwC) is a global professional services firm providing audit, tax, and consulting services. PwC helps organizations manage financial risks, comply with regulations, and improve performance through its expertise in industries like finance, healthcare, and technology.
Services you might be interested in
One-Shot Campaign
Reach out to ideal employees in one shot!
The intelligent campaign for reaching out to the ideal audience to whom you can ask for help (guidance or referral).