Job Description

About FedExWe're on our way to becoming the world's most flexible, efficient, and intelligent supply chain. As the global landscape continues to change, we pivot and reinvent how we workxe2x80x94so we can connect the world with people and products in the ways that matter. We'll always look for ways to work better, smarter, and faster. And our team members keep making a difference every day.Join FedEx in India- A diverse group of tech enthusiasts who are passionate about progress and innovation, working together to build solutions for our customers across the globe.- A passionate group of people committed to delivering outstanding experiences A culture that inclusive, and rewarding place to work, where growth and learning are prioritized, employee successes are celebrated, and team membersare delivering hope, change, and newAbout FedEx:Located in Hyderabad, India, FedEx ACC India serves as a strategic technology division for FedEx that will focus on developing innovative solutions for our customers and team members across the globe. These solutions will enhance productivity, minimize expenses, and update our technology infrastructure to continue providing the outstanding experiences our customers expect.Penetration Tester & DAST Specialist Job Requirements

• Conduct comprehensive security assessments, including manual penetration testing and automated Dynamic Application Security Testing (DAST), to identify network, application, and system vulnerabilities.
• Exploit vulnerabilities to simulate real-world attack scenarios and assess potential business impact.
• Configure, run, and analyze DAST tools to identify and validate application vulnerabilities.
• Collaborate with development and DevSecOps teams to integrate security testing into CI/CD pipelines and secure SDLC processes.
• Provide detailed reporting with actionable recommendations for remediation of identified vulnerabilities.
• Proficiency with tools such as Metasploit, Burp Suite, OWASP ZAP, Nmap, and Wireshark, and experience with commercial DAST solutions like Qualys
• Strong understanding of network security, web application security, API security, and the OWASP Top Ten.
• Familiarity with scripting languages for automation and testing.
• Stay updated on emerging threats, vulnerabilities, and attack methodologies.
• Knowledge of secure coding practices and ability to guide developers in remediating vulnerabilities.
• Understanding of regulatory compliance standards (e.g., PCI DSS, GDPR) and application security best practices.
• Must understand Security Standards- NIST, MITRE, OWASP, and MASVS
• Relevant certifications such as OSCP, CEH, GPEN, GWAPT, or CSSLP are preferred.
• Build quantitative and qualitative risk metrics.
• Dashboarding in PowerBI, advanced PowerPoint skills.

• Bachelors degree in computer science, Information Technology, Cybersecurity, or a related field.
• 3+ years of experience in Cyber Security, VAPT, information security, or a related role.
• Professional certifications such as CISSP, CISM, CEH, or CompTIA Security+ are highly desirable.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills.
• Ability to work independently and as part of a team in a fast-paced environment.

FedEx