Job Description

:

About News Corp:

News Corp is a global diversified media and information services company focused on creating and distributing authoritative engaging content to consumers and businesses throughout the world. The company comprises businesses across a range of media, including news and information services, book publishing, digital real estate services, cable network programming in Australia, and pay-TV distribution in Australia.

What You\xe2\x80\x99ll Do We are seeking a Motivated and eager-to-learn Security Testing Engineer to join our team. As a Security Testing Associate, you will be responsible for conducting Vulnerability Assessments and Penetration Testing (VAPT) on web applications, mobile applications, and APIs. Your primary focus will be to identify security vulnerabilities, assess the risks associated with them, and provide recommendations for remediation and Manual Validation by following the Frameworks / Methodologies like OWASP Top 10. You will be working with your immediate lead and also with Global leaders to deliver this function

Responsibilities

Perform comprehensive security testing, including Vulnerability Assessment and Penetration Testing, on web applications, mobile applications, and APIs.

Identify and exploit vulnerabilities in applications and systems to assess their potential impact.

Ensure the effective implementation of security controls and measures in line with identified risks.

Prepare detailed assessment reports outlining identified vulnerabilities, risks, and recommendations for remediation.

Maintain accurate and detailed records of tests conducted and document the results.

Conduct in-depth discussions with clients to explain the assessment reports and provide guidance on implementing remediation measures.

Stay updated with the latest security vulnerabilities, attack techniques, and industry best practices by conducting passionate research and continuous learning.

Possess platform-specific testing experiences, such as VAPT of AWS, Azure, or other cloud platforms.

Required Experience & Qualifications

Computer Science Graduate or Equivalent Degree Knowledge of programming language, Application security engineering.

Experience level 0 - 2 years and above, role is Individual contributor.

Certifications like Certified Ethical Hacker (CEH), CPENT (Certified Penetration Testing Professional) Offensive Security Certified Professional (OSCP), or similar are highly desirable.

Preferred Skills & Knowledge

Solid hands-on experience in performing security testing, including Vulnerability Assessment and Penetration Testing, on web applications, mobile applications, and APIs.

Strong knowledge of common web application vulnerabilities (e.g., OWASP Top 10) and mobile application security best practices.

Familiarity with security tools and frameworks used in penetration testing, such as Burp Suite, OWASP ZAP, Kali Linux, etc.

Knowledge of Common Weakness Enumeration (CWE) Common Vulnerabilities and Exposures (CVE) and remediation recommendations

Excellent understanding of network protocols, operating systems, and application architectures.

Ability to analyze and interpret assessment results and provide meaningful recommendations for remediation.

Strong communication skills, both written and verbal, to effectively convey assessment findings to clients and engage in technical discussions.

Experience with platform-specific testing, such as VAPT of AWS, Azure, or other cloud platforms, would be an added advantage.

Most importantly, Self-motivated, detail-oriented, and a continuous learner with a passion for Cybersecurity.

Strong expertise in application security concepts and activities like Source Code Review (SAST) & Dynamic application vulnerability scanning (DAST).

Prefer to have hands-on experience with commercial and open-source tools e.g Burp suite Professional, Metasploit, Checkmarx, Postman, SQLMAP, etc,

Location: Bangalore

Working Arrangement: Hybrid - a minimum of three days in the office per week

Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status. EEO/AA/M/F/Disabled/Vets

#LI-Hybrid

Job Category: IT, Telecom & Internet

News Technology Services