Metasploit Jobs in Pune

Job Title: Security Engineer Location: Pune We are looking for a skilled Security Engineer to join our Cloud Infrastructure & Security team. In this role, you will be responsible for managing and securing all aspects of e-commerce product security and compliance within the AWS cloud environment. The ideal candidate will have a strong background in application and infrastructure security, vulnerability assessment, penetration testing, and a proven track record of participating in security audits. Key Responsibilities: Lead and participate in security audits across multiple environments, including web security, application security, mobile app security, network security, and IT infrastructure security. Conduct thorough Vulnerability Assessments and Penetration Testing (VAPT) to identify and mitigate potential risks in applications, AWS resources, configurations, and IT infrastructure. Collaborate with cross-functional teams to ensure the security of the e-commerce products, proactively identifying gaps in security and implementing the necessary controls. Prepare detailed VAPT reports using predefined templates and assist in finalizing audit reports for management. Coordinate with relevant teams to ensure timely resolution of identified security issues. Create and maintain security checklists, test cases, and test scenarios to facilitate security audits and penetration tests. Implement industry-standard security controls for AWS resources, including vulnerability management and configuration hardening. Perform penetration tests on computer systems, networks, and applications, identifying weaknesses and recommending solutions. Conduct physical security assessments of systems, servers, and network devices, focusing on firewall maintenance, network security, and other critical infrastructure components. Provide regular updates to management regarding security findings, vulnerabilities, and remediation plans. Review and offer actionable feedback on information security issues, collaborating with engineering teams to ensure timely fixes. Drive improvements in security services, including hardware, software, policies, and procedures. Identify areas for enhancing security education and awareness among internal users. Stay current with the latest malware and security threats, ensuring that the security strategy is responsive to new challenges. Manage and monitor security operations with AWS, XDR/EDR, Microsoft O365 security, and SaaS-based applications. Desired Skills & Experience: 5+ years of experience in AWS application and infrastructure security, Vulnerability Assessment, and Penetration Testing. At least 2 security audits completed, with at least one audit performed in the past 12 months. Solid experience working in heterogeneous environments and specifically with AWS Cloud. Product-based company experience is a plus. Hands-on expertise with VAPT using industry-standard tools such as Qualys, Nessus, WebInspect, Acunetix, Metasploit, Burp Suite Pro, Netsparker, etc. Strong experience with Linux administration and security (hardening servers according to industry best practices). Familiarity with OWASP security requirements and experience implementing them across applications and infrastructure. Proficiency in penetration testing on web and mobile applications, cloud environments, and network infrastructures. AWS Security experience is mandatory. Experience with XDR/EDR, Microsoft O365 security, and SaaS security is highly desirable. Strong analytical skills and the ability to identify vulnerabilities and risks across platforms. Certifications: CCNA, CompTIA+, or similar; AWS Security Specialty or similar certifications are preferred. Excellent communication skills, with the ability to collaborate effectively with both technical and non-technical teams. Strong organizational skills and the ability to prioritize tasks effectively. Ability to work with a product-ownership mindset while maintaining security across all systems and applications. What We Offer: Competitive salary and benefits. A dynamic and collaborative work environment where innovation and security are top priorities. Opportunities for continuous learning and career growth in the field of cloud and cybersecurity. If you have a passion for security, experience with AWS, and want to be part of a growing team protecting critical infrastructure, apply today!