Minimum Salary: -

ZS is a place where passion changes lives. As a management consulting and technology firm focused on improving life and how we live it, our most valuable asset is our people. Here you'll work side-by-side with a powerful collective of thinkers and experts shaping life-changing solutions for patients, caregivers and consumers, worldwide. ZSers drive impact by bringing a client first mentality to each and every engagement. We partner collaboratively with our clients to develop custom solutions and technology products that create value and deliver company results across critical areas of their business. Bring your curiosity for learning; bold ideas; courage and passion to drive life-changing impact to ZS.

• Typical daily work will consist of performing advanced penetration tests on cloud-based and on-premises infra to identify security weaknesses and loopholes.
• Perform Red teaming / Adversary emulations to simulate sophisticated cyberattacks and assess the effectiveness of existing security controls.
• Conduct Purple team exercises in collaboration with Sec-Ops to assess the effectiveness of defensive measures and incident response capabilities through realistic attack simulation.
• Develop and test custom exploits to demonstrate vulnerabilities and assess the potential impact on systems.
• Execute social engineering attacks, such as phishing or vishing, to evaluate the organization's susceptibility to human-centric threats.
• Perform Breach and Attack Simulations using BAS platform across the organization infrastructure.
• Conduct comprehensive cloud penetration tests targeting AWS, Azure, GCP to identify and exploit misconfigurations, insecure interfaces, and vulnerabilities in cloud services and applications.
• Assess and exploit weak IAM configurations, privilege escalation paths, and over-permissioned roles to identify security risks within cloud environments.
• Collaborate with incident response team to provide insights and support during and after security incidents.
• Regularly review and enhance penetration testing methodologies and practices to adapt to evolving threats and technologies.
• Create detailed reports outlining findings from penetration tests, red team exercises, and vulnerability assessments that include clear, actionable recommendations for remediation and risk mitigation.

• Bachelor's in computer science/management of computer information/information assurance or Cybersecurity
• 3+ years of Penetration Testing / Red-Teaming / Offensive Security
• Must have Security Certifications: OSCP / CREST / GPEN
• Must have Cloud Security Certifications: AWS Cloud Practitioner / AWS Solutions Architect
• Preferred Security Certifications: CRTP/CARTP, CRTE, CRTO (I & II), OSEP, OSED, GRTP
• Preferred Security Cloud Certifications: AWS Security Specialty