Senior Red Team Pentester - Chennai, India - AirEye

Description

Company Description

AirEye is a SaaS platform that provides complete protection against any form of digital airborne attacks targeted at organizational networks. The platform's automated blocking feature eliminates the need for platform management and alert chasing, seamlessly complementing existing network security infrastructure without requiring architectural changes.

Role Description

We are on the lookout for a seasoned Penetration Tester who not only understands the intricacies of cybersecurity but has actively contributed to its landscape through real-world exploits and CVE filings. This role is not for cloud and application pentesters. If you have hands-on experience exploiting operating systems, constructing devices akin to a WiFi PineApple, breaching network protocols, and penetrating IoT devices, read on.

Responsibilities

• Perform structured penetration tests and security assessments on wireless networks and IoT systems.
• Identify and exploit vulnerabilities in WiFi configurations and IoT devices using both manual techniques and sophisticated automation tools.
• Innovate and develop custom scripts or tools to streamline the penetration testing process.
• Strategically simulate both local and remote attacks to measure and enhance the security defenses in place.
• Thoroughly document findings, compile comprehensive reports, and effectively communicate these results to stakeholders.
• Continuously update your knowledge base with the latest in security threats, cutting-edge exploitation techniques, and robust mitigation strategies.
• Enjoy working together with team members and grow the team's exploiting strength and toolsets

Qualifications

• Bachelor's degree in Computer Science, or related field, or extremely relevant red teaming experience.
• Minimum of 10 years doing pentesting of which at least 5 years have focused specifically on WiFi and IoT security challenges.
• Advanced programming and scripting proficiency in C/C++, Python, SQL and Bash.
• Advanced knowledge of networking, cryptography, reverse engineering, web applications, operating systems, databases, and wireless technologies
• Demonstrated ability to design and implement your own device scanning engines.
• Mastery over tools like Kismet, Aircrack-ng, Wireshark, and other pivotal security testing technologies.
• Deep understanding of network protocols, encryption methods, and the unique security vulnerabilities associated with wireless and IoT platforms.
• Used fuzzing tools to exploit protocols and well versed with injection attacks and side channel attacks.
• A proven track record of filed CVEs, showcasing your direct impact on the security community.
• Exceptional problem-solving capabilities with a mindset attuned to both attack and defense strategies.