Company Description
TAC Security is a global leader in vulnerability management that specializes in protecting Fortune 500 companies, leading enterprises, and governments worldwide. With its AI-based Vulnerability Management Platform ESOF (Enterprise Security in One Framework), TAC Security manages over 5 million vulnerabilities. ESOF, recognized as Gartner's Customer First Choice Solution for Vulnerability Management/Assessment, is one of the first risk-based vulnerability management solutions with built-in CRQ (Cyber Risk Quantification). TAC Security has been consistently recognized as a Great Place to Work and a Great People Manager Company.
Position Overview:
As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices.
Key Responsibilities:
- Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients IT infrastructure, applications, and networks.
- Conduct thorough security assessments using industry-standard tools and methodologies, including but not limited to, Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
- Identify and exploit security vulnerabilities to assess the potential impact on clients systems and data.
- Prepare detailed assessment reports outlining findings, risk levels, and recommended remediation measures.
- Collaborate with clients IT teams to prioritize and address identified security issues in a timely manner.
- Develop and implement custom scripts or tools to enhance testing capabilities and automate repetitive tasks.
- Stay abreast of emerging security threats, vulnerabilities, and industry best practices to continually improve testing methodologies.
- Provide guidance and mentorship to junior security engineers, fostering a culture of knowledge sharing and skill development within the team.
Requirements:
- Bachelor's degree in Computer Science, Information Technology, or related field.
- 3+ years of experience in cybersecurity, with a focus on Vulnerability Assessment and Penetration Testing.
- Proficiency in using tools such as Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
- Hands-on experience with various operating systems, including Windows, Linux, and Unix.
- Strong understanding of network protocols, web application architecture, and common security vulnerabilities.
- Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or similar certifications preferred.
- Excellent analytical skills and attention to detail, with the ability to prioritize and manage multiple tasks effectively.
- Effective communication skills, both verbal and written, with the ability to convey technical concepts to non-technical stakeholders.
- Proven track record of delivering high-quality security assessments and actionable recommendations.
