Job Description

Posting Description:Job Title- Penetration TesterWork Location-Noida/GurugramPosition type- Full TimeWorking style- HybridCab Facility- YesAON IS IN THE BUSINESS OF BETTER DECISIONSAt Aon, we shape decisions for the better to protect and enrich the lives of people around the world.As an organization, we are committed as one firm to our purpose, united through trust as one inclusive, diverse team and we are passionate about helping our colleagues and clients succeed.Aon is seeking a driven and experienced offensive security professional to join Aonxe2x80x99s growing internal penetration testing team. The IT Manager-Information Security will work closely with various cross-organizational teams to enumerate various risks throughout Aonxe2x80x99s environment and be a key resource for guiding proper remediation of identified vulnerabilities.GENERAL DESCRIPTION OF ROLE:Aon is seeking a driven and experienced offensive security professional to join Aonxe2x80x99s growing internal penetration testing team. The IT Manager-Information Security will work closely with various cross-organizational teams to enumerate various risks throughout Aonxe2x80x99s environment and be a key resource for guiding proper remediation of identified vulnerabilities.Core Responsibilitiesxc2xb7 Application Penetration Testing (Web-app, API, Thick Client, Mobile, IoT)xc2xb7 Network Penetration Testing (Internal, External)xc2xb7 Threat Modelingxc2xb7 Source-Code Reviewsxc2xb7 Manage priorities and tasks to achieve utilization targetsxc2xb7 Ensure quality reports and services are delivered efficiently and on timexc2xb7 Collaborate with cross-functional teams to ensure that security best practices are integrated into the development processxc2xb7 Enable remediation of discovered vulnerabilities through the building of relationships with engineering teamsxc2xb7 Drive security into SDLC using security tooling (DAST/SAST/SCA)xc2xb7 Continue to develop professional skills with relevant industry specific certifications or trainingRequired Experiencexc2xb7 5+ years of relevant experience working in Penetration Testing and Application Securityxc2xb7 Strong understanding of security principles, policies, and industry best practicesxc2xb7 Familiarity with Open-Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP), Software Assurance Maturity Model (SAMM), National Institute of Standards and Technology (NIST) Special Publications, and PTES (Penetration Testing Execution Standard)xc2xb7 Familiarity with advanced tools and techniques to simulate real-world attacks and identify potential security weaknessesxc2xb7 Excellent verbal and written communication skills, including technical writing of assessment reports, presentations, and operating proceduresxc2xb7 Shows an aptitude for leadership both through practice maturation and by mentoring junior teammatesxc2xb7 Experienced testing against one or more IT security compliance frameworks, such as PCI, FISMA, HIPAA, FedRAMP, or HITRUSTxc2xb7 Strong working knowledge of at least two programming or scripting languagesxc2xb7 Familiarity with best practices for securing the SDLC and DevOps processesxc2xb7 Ability to triage security incidents when neededxc2xb7 Bachelorxe2x80x99s Degree or equivalent certification and experiencePreferred Experiencexc2xb7 Relevant security certifications strongly preferred (e.g. OSCP, CRTP)xc2xb7 Red/Purple team operationsxc2xb7 Cloud Service penetration testing tradecraft and methodologies across multiple service providers (AWS, Azure, GCP)xc2xb7 Mobile platform penetration testing tradecraft and methodologies across both widely used platforms (iOS and Android)xc2xb7 Software development/engineeringHow we support our colleaguesIn addition to our comprehensive benefits package, we encourage a diverse workforce. Plus, our agile, inclusive environment allows you to manage your wellbeing and work/life balance, ensuring you can be your best self at Aon. Furthermore, all colleagues enjoy two xe2x80x9cGlobal Wellbeing Daysxe2x80x9d each year, encouraging you to take time to focus on yourself. We offer a variety of working style solutions, but we also recognise that flexibility goes beyond just the place of work... and we are all for it. We call this Smart Working!Our continuous learning culture inspires and equips you to learn, share and grow, helping you achieve your fullest potential. As a result, at Aon, you are more connected, more relevant, and more valued.Aon values an innovative, diverse workplace where all colleagues feel empowered to be their authentic selves. Aon is proud to be an equal opportunity workplace.Aon provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, age, disability, veteran, marital, domestic partner status, or other legally protected status.We welcome applications from all and provide individuals with disabilities with reasonable adjustments to participate in the job application, interview process and to perform essential job functions once onboard. If you would like to learn more about the reasonable accommodations we provide, email#LI-RK2

Aon