IT Security Engineer (VAPT)

We are looking for an IT Security Engineer with hands-on exposure to Vulnerability Assessment and Penetration Testing (VAPT) and a foundational understanding of multiple cybersecurity domains.

The role involves performing security assessments, supporting remediation efforts, and contributing to strengthening the overall security posture of client environments. The ideal candidate should have strong technical fundamentals, a proactive mindset, and the ability to support junior team members.

Key Responsibilities:

• Perform Vulnerability Assessment and Penetration Testing (VAPT) on web applications, networks, and systems.
• Identify and validate security vulnerabilities, including OWASP Top 10 risks.
• Conduct basic network and application security testing using standard tools and techniques.
• Use tools such as Burp Suite, Nmap, Nessus, OpenVAS, Nikto, etc.
• Assist in manual validation of vulnerabilities to eliminate false positives.
• Prepare clear and structured VAPT reports with risk ratings and remediation guidance.
• Support re-testing and closure validation after fixes are applied.
• Assist in analyzing security-related events, anomalies, and system behavior during assessments.
• Contribute to improving security controls and best practices across environments.

· Maintain documentation of assessment activities, findings, and observations.

· Stay updated with latest vulnerabilities, exploits, and threat landscape.

· Guide and support junior team members in testing activities and reporting.

Required Skills & Qualifications:

• Bachelor’s degree in Cybersecurity, IT, Computer Science, or related field.
• 1–3 years of hands-on experience in VAPT or cybersecurity domain.

Strong understanding of:

• Web application security (OWASP Top 10)
• Basic networking (TCP/IP, ports, protocols)
• Common vulnerabilities (SQL Injection, XSS, CSRF, authentication flaws)

Hands-on familiarity with:

• Burp Suite (mandatory)
• Nmap, Nessus/OpenVAS

Working knowledge of:

• Linux environment and commands
• HTTP/HTTPS protocols and traffic analysis

Broader Security Knowledge (Important Expectation)

• Basic awareness of multiple cybersecurity domains such as:
• Network Security
• Endpoint Security (EDR concepts)
• Cloud Security fundamentals
• Security event awareness and incident fundamentals

· Threat Intelligence concepts (attack trends, indicators, threat landscape)

· Red Teaming concepts (attack simulation, attacker mindset, basic exploitation flow)

• Understanding of security frameworks (OWASP, ISO 27001, NIST – basic level)

Added Advantages (Preferred):

• Exposure to cloud platforms (Azure / AWS)
• Familiarity with endpoint security or DLP tools
• Basic scripting knowledge (PowerShell / Python)
• Certifications such as CEH, eJPT, Security+ (optional)
• Hands-on practice through platforms like Hack The Box, TryHackMe, or similar labs

Soft Skills & Team Handling Capability:

• Strong analytical and problem-solving ability
• Good documentation and report writing skills
• Ability to guide and support junior engineers
• Basic coordination and task ownership capability
• Good communication skills
• Willingness to learn and adapt

Other Expectations:

• Ability to handle multiple assessments and timelines
• Willingness to work across different cybersecurity functions when required
• Continuous focus on skill enhancement in security domains

Remuneration:

· Competitive package commensurate with experience and industry standards.

Company Profile:

Amyntor Tech Solutions Pvt Ltd steered by young and experienced professionals from different walks of life we offer a plethora of skills.We are headquartered at Thiruvananthapuram, Kerala and got a presence all over India. We are proud to introduce ourselves as sentinelCybersecurity service provider. We are vehemently endorsed by our

customers by giving references from the nook and corner of the world

Job Types: Full-time, Permanent

Pay: ₹20,000.00 - ₹28,000.00 per month

Benefits

• Commuter assistance

Work Location: In person