Cyber Security Senior Analyst - Pentesting

• Basic domain knowledge and functional knowledge of cyber security or information security processes
• Assist functional manager in performing day to day security activities/operations, either individually or as part of a team
• Analyze problem statements, collaborate to define solutions and execute the same
• Work inline with defined processes/frameworks and provide regular functional updates to manager
• Ability to complete deliverables and work in consultation with manager and other seniors in the team
• Contribute to various functional initiatives

•    2 to 4 years of related work experience in penetration testing, threat modeling and/or application security testing

•    Expertise in conducting pentest on Web applications, API, thick client applications etc.
•    Thorough understanding of application architectures, understanding of security standards, frameworks and methodologies, HTTP, TCP/IP
•    Knowledge of web application attacks and defense strategies including those found in the OWASP Top 10, Mobile Top 10 and SANS top 25
•    Knowledge using leading testing tools such as Accunatix, Burp suite, NMAP, Kali OS , Nessus, Metasploit etc.
•    Experience with various operating systems, network security technologies, web application development technologies, languages and frameworks such as .Net, Java, PHP, Angular JS, NodeJS etc.
•    Development and scripting languages such as Python, C/C++, Java/JavaScript
•    Experience with Configuration and Deployment Management Testing, Identity Management Testing, Cookie/Session Management, Authentication/ Authorization Testing, Input Validation Testing, Privilege escalation testing, Enumeration testing
•    Good communication, presentation and interaction skills
•    Industry recognized Pentest certification (preferred)
•    Bug bounty hunters, CVE finders and other bug crowd rank holders are preferred

 We are committed to creating a diverse environment and are proud to be an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

At Société Générale, we are convinced that people are drivers of change, and that the world of tomorrow will be shaped by all their initiatives, from the smallest to the most ambitious. Whether you’re joining us for a period of months, years or your entire career, together we can have a positive impact on the future. Creating, daring, innovating, and taking action are part of our DNA. If you too want to be directly involved, grow in a stimulating and caring environment, feel useful on a daily basis and develop or strengthen your expertise, you will feel right at home with us!

Still hesitating? 
You should know that our employees can dedicate several days per year to solidarity actions during their working hours, including sponsoring people struggling with their orientation or professional integration, participating in the financial education of young apprentices, and sharing their skills with charities. There are many ways to get involved.

We are committed to support accelerating our Group’s ESG strategy by implementing ESG principles in all our activities and policies. They are translated in our business activity (ESG assessment, reporting, project management or IT activities), our work environment and in our responsible practices for environment protection.