Security Engineer, Offensive Security

General Information

Press space or enter keys to toggle section visibility

Country

India

Department

IM SECURITY

Date

Friday, December 13, 2024

Working time

Full-time

Ref#

20034611

Job Level

Individual Contributor

Job Type

Experienced

Job Field

IM SECURITY

Seniority Level

Associate

Description & Requirements

Press space or enter keys to toggle section visibility

About Xerox Holdings Corporation

For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we’ve expanded into software and services to sustainably power today’s workforce. From the office to industrial environments, our differentiated business solutions and financial services are designed to make every day work better for clients — no matter where that work is being done. Today, Xerox scientists and engineers are continuing our legacy of innovation with disruptive technologies in digital transformation, augmented reality, robotic process automation, additive manufacturing, Industrial Internet of Things and cleantech. Learn more at www.xerox.com and explore our commitment to diversity and inclusion.

The Security Engineer – Offensive Security is responsible for securing Xerox applications and network infrastructure by identifying threats, and vulnerabilities using a combination of automated and manual techniques and collaborating with application teams to prioritize and remediate the vulnerabilities.

Designation: Security Engineer – Offensive Security

Qualification: Bachelor’s degree in computer science, Information Technology, or related field.

Professional Certifications

Preferred – A technical certification such as OSCP, CRTP or equivalent is desired but not mandatory.

Timings: 1 PM to 10 PM(IST)

Location: Bangalore, Kochi, Gurgaon, Remote

Primary Responsibilities

• Perform penetration testing on applications/products (Web, Mobile, Thick client applications, Printers) to identify security vulnerabilities.
• Automate penetration and other security test activities on networks, system and applications.
• Participate in red team exercise to simulate threat actors TTPs.
• Validate vulnerabilities submitted by external researchers and bug bounty programs.
• Continuous research on new attack vectors/techniques impacting enterprise applications/networks.
• Work with cross-functional teams to align and prioritize remediation efforts.
• Develop scripts, tools, or methodologies to enhance offensive security capabilities.
• Knowledge and Skills Required
• 3+ years of offensive security responsibilities
• Expertise in performing penetration testing on web, mobile, IoT and client-server applications
• Strong understanding of common vulnerabilities, attack vectors and corresponding mitigation techniques
• Strong manual penetration testing and exploit development experience.
• Prior software development experience is a plus.
• Strong exposure to popular application security standards including OWASP TOP 10, etc.
• Strong interpersonal skills as well as excellent written and verbal communication skills
• Uncompromising personal and professional integrity and ethics
  
  

Apply

Share This Job

• Share Security Engineer, Offensive Security with Facebook
• Share Security Engineer, Offensive Security with LinkedIn
• Share Security Engineer, Offensive Security with Twitter
• Share Security Engineer, Offensive Security with a friend via e-mail
• Print page
  
  

< Go back