MAI Labs - Cyber Security Analyst - VAPT (3-5 yrs)

Mai Labs (Erstwhile P2e Labs) is a startup with the ambitious goal of creating the next Internet. We are dedicated to empowering the next billion users and democratizing the creation and unlocking of value on the Internet. With human interactions at the core, our technology acts as an enabler to unlock new opportunities for all Internet users, not the privileged few. Our portfolio includes a range of innovative products, including an open world - immersive platform to help creators craft immersive environments and assets, and a work in progress immersive realm. We are inching towards our vision of creating a complete photorealistic virtual world with complete design freedom and autonomy to artists & developers.

Who We Are :

We are building a trust based, people centric Company with focus on Users. Our team is proud to be building towards 'Made-in-India', building inclusive & compliant products for everyone in the community. We believe that People are core of our business, they build, they collaborate, they innovate, and they surprise themselves by becoming best version of themselves. Beyond the ask of role requirements, we hire for willingness to challenge status quo, with proclivity towards collaboration.

Role - VAPT Cybersecurity Analyst

Location - Hyderabad (WFO)

As a Senior VAPT Analyst with 3 to 5 years of experience in VAPT, Maintaining the security of systems, applications, and infrastructure. This diverse position involves a range of duties such as application security, penetration testing, red teaming, and vulnerability assessment. Be instrumental in identifying, evaluating, and mitigating security risks to protect assets and data from cyber threats.

Roles and Responsibilities :

Application Security :

- Conduct thorough assessments of applications to detect security vulnerabilities and weaknesses.

- Review security codes and analyze them to identify and address potential security issues.

- Work closely with development teams to incorporate security best practices into the software development process.

Penetration Testing :

- Carry out penetration tests on networks, systems, and applications to identify vulnerabilities that can be exploited.

- Develop and implement scenarios to simulate real cyber-attacks and evaluate the effectiveness of defense mechanisms.

- Provide detailed reports with findings, risks, and recommendations for remediation.

Red Teaming :

- Lead or participate in red team exercises to replicate advanced cyber threats and adversarial strategies.

- Perform reconnaissance, exploitation, and lateral movement to pinpoint weaknesses in defenses.

- Collaborate with blue teams to improve detection and response capabilities based on red team discoveries.

Vulnerability Assessment :

- Use automated scanning tools to conduct regular vulnerability assessments on infrastructure.

- Analyse and prioritize vulnerabilities based on severity, exploitability, and potential impact.

- Work with IT and security teams to ensure prompt remediation of identified vulnerabilities.

Additional Duties :

Supporting Incident Response :

- Offering expertise and assistance to the incident response team during security incidents and breaches.

- Aiding in forensic analysis, containment, and remediation efforts as required.

Regulatory Compliance and Standards :

- Ensuring adherence to relevant security standards, regulations, and industry best practices.

- Conducting tests for Hardening standards like CIS\NIST Benchmarking.

- Performing Cloud Security Tests on platforms such as AWS, GCP, Azure, and office 365 etc.