Nagarro is hiring a
Associate Staff Engineer - Penetration Testing

Summary

Join our dynamic team as a Security Professional to perform security testing of Applications, Cloud Environments, and articulate findings in an easily consumable manner. We're looking for someone with 3-6 years of experience in application security testing, knowledge of OWASP framework, and hands-on experience with pen testing, red team exercises, and bug hunting.

Requirements

• 3-6 years of experience in application security testing of web & mobile applications, API and infrastructure (cloud +network + server)
• Through knowledge of the OWASP framework and testing guide
• Hands-on knowledge of Pen testing, red team exercise, and bug hunting
• Hands-on knowledge of DAST/SAST/IAST solutions
• Knowledge on scripting (e.g. in python, PowerShell, JavaScript) to write automation scripts & PoCs
• Knowledge on SSO and OAuth 2.0 flows would be required
• Bachelor degree in Computer Science/Computer Application/Information & Technology/Electronic & Communication Engineering

Responsibilities

• Perform security testing of Applications, Cloud Environments
• Articulate findings in an easily consumable manner to internal stakeholders

Preferred Qualifications

• Security certifications i.e. OSCP, OSWE, CCSP are a plus
• Experience in bug bounty hunting with well-known bug bounty platforms/vulnerability disclosure programs are a plus