6d Technologies - Lead Information Security Engineer - Vulnerability Management (5-12 yrs)

Job Description :

- Experience in Information Security domain for 5 to 12 years.

Thorough knowledge and/or a proven record of success in the following areas :

- Technical concepts such as application security, network segregation, access controls, IDS/IPS and Firewall devices, physical security, and information security risk management.

- Security testing tools, such as BurpSuite, ZAP, PowerSploit, Metasploit, Nessus, HP Web Inspect, or other tools included within the Kali Linux distribution.

- Networking protocols, TCP/IP stack, systems architecture, and operating systems.

- Understanding on common programming and experience in scripting languages.

- Worked on well-known Cybersecurity frameworks and industry-leading practices such as OWASP, NIST CSF, PCI DSS.

- Traditional security operations, event monitoring, and Security Information and Event Management (SIEM) tools.

- Identifying security critical vulnerabilities without utilizing a vulnerability scanning tool, i.e., knowledge of exploitable vulnerabilities and ability to execute stealthy penetration testing engagements.

- Performing penetration testing activities within a client's environment, emphasizing manual stealthy testing techniques using commercially / freely available offensive security tools and utilities built into operating systems.

- Hands on with Windows and Linux operating system setup, management, and power usage, e.g., cmd, bash, network troubleshooting, virtual machines.

- Participating actively in client discussions and meetings and communicating a broad range of potential add-on services based on identified weaknesses.

- Keeping leadership informed of progress and issues.