Lead Consultant - Cyber Security Job

YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation.

At YASH, we’re a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single truth – bringing real positive changes in an increasingly virtual world and it drives us beyond generational gaps and disruptions of the future.

We are looking forward to hire Cyber Security Professionals in the following areas :

Job Description:

Experience required: 5-7 years.

The Role:

We are seeking a highly motivated and experienced Penetration Tester to join our team and play a critical role in ensuring the security of our elevator and escalator hardware control systems. You will be responsible for identifying and exploiting vulnerabilities in these systems, working with developers to remediate identified issues, and contributing to the development of a robust security posture for our products.

Responsibilities:

• Conduct penetration testing engagements on elevator and escalator hardware control systems, focusing on identifying vulnerabilities that could be exploited by malicious actors.
• Utilize a variety of penetration testing methodologies and tools, including static and dynamic analysis, fuzzing, and other engineering techniques.
• Document identified vulnerabilities in detail, including proof-of-concept exploits.
• Work collaboratively with developers to understand the architecture and functionality of the systems under test, and provide clear and actionable recommendations for remediation.
• Stay up-to-date on the latest vulnerabilities and attack techniques relevant to the elevator and escalator industry.
• Participate in the development and implementation of secure coding practices and security testing processes.
• Prepare comprehensive reports documenting the testing methodology, findings, and recommendations.
• Basic knowledge on security defect management process.

Qualifications:

• Minimum of 3+ years of experience in penetration testing, with a focus on embedded systems/Industrial control systems (ICS) security.
• Proven experience in identifying and exploiting vulnerabilities in hardware and firmware and MAC layer.
• Strong understanding of networking concepts and embedded protocols such as UART, RS 232/485, JTAG, SPI, I2c.
• Experience with penetration testing methodologies such as OWASP Testing Guide (PTES) and methodologies specific to ICS security.
• Excellent communication and collaboration skills.
• Ability to work independently and manage multiple projects simultaneously.
• Strong analytical and problem-solving skills.
• A passion for security and a commitment to continuous learning.

At YASH, you are empowered to create a career that will take you to where you want to go while working in an inclusive team environment. We leverage career-oriented skilling models and optimize our collective intelligence aided with technology for continuous learning, unlearning, and relearning at a rapid pace and scale.

Our Hyperlearning workplace is grounded upon four principles

• Flexible work arrangements, Free spirit, and emotional positivity
• Agile self-determination, trust, transparency, and open collaboration
• All Support needed for the realization of business goals,
• Stable employment with a great atmosphere and ethical corporate culture