Pen tester (Penetration Testing)

Location: Mumbai (Candidates should be born and brought up in Mumbai)
Experience: 5-7 years
Notice Period: Immediate to 30 days
________________________________________

We are seeking a Pen tester (Penetration Testing) to join our cybersecurity team. The ideal candidate will have proven experience in penetration testing, vulnerability assessment, and offensive security operations.

Key Responsibilities:
Conduct penetration testing on web applications, ERP, SAP systems, and infrastructure assets.
Draft business risk-oriented reports and assist teams in mitigating identified vulnerabilities.
Contribute to the creation and implementation of security tools to secure the Saint-Gobain environment.
Participate in Red Team and Purple Team exercises.
Define and implement quality and performance metrics for the cybersecurity roadmap.

Qualifications:
Educational Background: Bachelors degree in Computer Science or Information Security; relevant certifications (e.g., OSCP, CRTP, CompTIA Security+) are a plus.
Technical Expertise: Hands-on experience in web application and API penetration testing tools.
Knowledge Areas:
o Strong understanding of OWASP Top 10 or SANS Top 25.
o Familiarity with malware, TCP/UDP packets, IDS/IPS, web proxies, SIEM, DNS security, and firewalls.
o Basic knowledge of ERP and SAP systems.
o Mobile and thick client application penetration testing.

Skills: Scripting experience (e.g., Python, Bash, Powershell, C#) for automation.
Participation in CTF challenges (Hack the Box, Root Me, TryHackMe) is a plus.