Sr. Security Engineer- AWS @ Xenonstack

System Security Engineers are responsible for preventing and mitigating security breaches that may arise within our companys computer systems. They are experts in various fields such as information security, network security, and mobile security.

• Work with the team to plan, prepare, execute, and summarize the security testing

• Work with a team in delivering and implementing consistent test disciplines and processes using associated best practices across the program.

• Knowledge of debuggers, disassemblers, binary patch diffing (e.g. BinDiff).

• Artful communication skills and organizational savvy, to steer peers and leadership toward solutions that carefully balance business, risk, compliance, and engineering concerns.

• Eagerness to challenge the status quo, balanced with a reasonable and methodical approach to effecting change.

• Security testing- Penetration security/ Infrastructure security/ cloud security/Devsecops security/ Application security

• Experience in VAPT Applications, Network, and Cloud Technologies.

• Proficiency in manual and automated techniques for penetration testing and executing

• vulnerability assessments (injection, privilege escalation, fuzzing, buffer overflows, etc.)

• Ability to analyse vulnerabilities appropriately characterizes threats, and provide sound remediation advice

• Familiarity with commercial testing applications (i.e. Burp, dbProtect, Acunetix, SonarQube)

• Knowledge of network protocols and network monitoring like "sniffing" (e.g. Wireshark, tcpdump)

• Knowledge of tools used for Thick clients, web application, and mobile security testing.

• Hands-on knowledge on OWASP top 10, SANS Top 20.

• Deep understanding of PCI DSS.

• Experience in SIEM and SOC solutions.

• Coding/scripting experience (Python, Ruby, C, Assembly, Bash, PowerShell, etc.)

• Excellent communication skills

• Attention to detail

• Analytical mind and Problem Solving Aptitude

• Strong Organizational skills

• Visual Thinking

Education : B.E/B.Tech in Computer Science or a related technical degree or M.S/M.Tech in Information Security.