Duties and Responsibility
- Conduct vulnerability assessment and penetration testing for network, web applications, mobile applications and thick-client application
- Conduct configuration reviews for OS, DB, Firewall, Routers, Switches and other infrastructure components
- Conduct red-team assessments using social engineering, physical security compromise and other techniques
- Be well-versed with internal privilege escalation techniques
- Conduct source-code review using automated and manual approaches
- Prepare detailed reports as per NII format
- Ensure timely delivery of status updates and final reports to clients
- Handle client queries
- Keep oneself updated on the latest IT Security news, exploits, hacks
- Contribute technical content – chapter meetings, blog posts