Summary
Based in Pune, this position is part of the Global Information/Cyber Security Group, focusing on offensive security strategies to protect and enhance business operations.
The consultant collaborates with a specialized team to monitor security, implement cloud defense, conduct architecture reviews, and run penetration tests and social engineering campaigns.
Company : PTC
Position : Security Analyst
Experience freshers
Qualification : Graduate
Location : Pune
Responsibilities
- Lead long-term offensive security engagements, identifying and remediating infrastructure and service vulnerabilities.
- Perform reconnaissance, weaponization, payload delivery, and command-and-control techniques as part of red team operations.
- Integrate and automate security tools using scripting and AI technologies.
- Research threat actors' tactics, techniques, and procedures (TTPs) to develop realistic emulation payloads for campaigns.
- Utilize threat intelligence and participate in purple teaming and incident response activities.
- Exploit systems and applications (Windows, Unix, web, mobile), conduct security reviews, perform reverse engineering, and analyze malware.
- Train staff on social engineering defenses and present security findings to senior management.
- Strengthen cloud architecture by reviewing security groups and VPC configurations.
Key Competencies
- Strong technical skills in cyber security practices and frameworks
- Effective leadership, decision-making, and persistence
- Ability to manage multiple tasks and take accountability for assignments
- Adaptability to new responsibilities and technologies; collaborative team player
- Excellent interpersonal and communication skills
Experience & Qualifications
- At least 3 years of offensive security experience and a solid grasp of frameworks such as OWASP Top 10, MITRE ATT&CK, and the Cyber Kill Chain.
- Proficiency in vulnerability management, commercial/open-source tools (Metasploit, DNSCAT2, Caldera, Clockify, Wireshark), and scripting languages (Go, Python, Perl).
- Coding experience in .NET, Java, C, C++, JavaScript, TypeScript, and web assembly is required.
- Knowledge of cloud environments, network architectures, code review, malware analysis, and exploit development.
- Bachelor’s or Master’s degree in Computer Science or equivalent experience; certifications such as OSCP, CRTO, PenTest+, or PNPT are valued.
