Skip to content
mimi
All jobs · Security Engineer jobs

Senior Security Engineer – Penetration Testing, Vulnerability Management

Interscripts, Inc.

India · On-site Full-time Senior 2d ago
Apply with a tailored resume Save job

About the role

Senior Security Engineer – Penetration Testing, Vulnerability Management & Enterprise Infrastructure Security

Location: Kondapur, Hyderabad

Working hours: Eastern Time

Work Experience: 5+ years

Role Overview

We are looking for a Senior Security Engineer to help strengthen and scale security across complex enterprise cloud and on‑prem infrastructure. This is a hands‑on role for a seasoned professional with deep experience in penetration testing, vulnerability assessments, infrastructure hardening, and enterprise security operations.

The ideal candidate brings a strong blend of offensive and defensive security knowledge, has worked in large organizations with diverse environments, and is comfortable identifying risks, validating exposures, and partnering across infrastructure, cloud, and engineering teams to drive remediation.

This role is well suited for a security professional who thrives in high‑impact environments, enjoys solving complex security challenges, and can operate across both strategic and technical layers of enterprise security.

Key Responsibilities

Penetration Testing & Security Assessments

  • Conduct and support penetration testing activities across cloud, on‑prem, network, application, and infrastructure environments.
  • Perform vulnerability assessments, validation testing, and risk‑based analysis of security exposures.
  • Simulate adversarial techniques to identify weaknesses in systems, services, architecture, and configurations.
  • Document findings clearly and provide practical remediation guidance to technical and business stakeholders.

Vulnerability Management

  • Lead enterprise‑wide vulnerability identification, prioritization, tracking, and remediation support.
  • Partner with infrastructure, cloud, and application teams to reduce security risk across critical assets.
  • Validate remediation effectiveness through retesting and security control review.
  • Improve vulnerability management processes, tooling, reporting, and operational maturity.

Cloud & Infrastructure Security

  • Assess and secure workloads across AWS, Azure, and/or hybrid cloud environments.
  • Review identity and access controls, network segmentation, endpoint posture, logging, and configuration baselines.
  • Support security hardening of servers, operating systems, virtualization platforms, and enterprise infrastructure.
  • Identify misconfigurations and control gaps across both cloud‑native and traditional on‑prem environments.

Security Engineering & Operations

  • Assist in the implementation and tuning of security controls for infrastructure, endpoints, networks, and privileged access.
  • Support incident response investigations, threat validation, and root cause analysis when required.
  • Contribute to security standards, playbooks, procedures, and technical documentation.
  • Work closely with IT, infrastructure, DevOps, and architecture teams to embed security into day‑to‑day operations.

Risk, Compliance & Best Practices

  • Align technical security work with enterprise security policies, control frameworks, and regulatory expectations.
  • Support audits, control reviews, and evidence collection related to infrastructure and security operations.
  • Recommend practical improvements based on industry standards and evolving threat landscapes.

Requirements

  • Bachelor’s degree in Cybersecurity, Information Security, Computer Science, Information Systems, or related field, or equivalent practical experience.
  • 5+ years of hands‑on experience in cybersecurity, with a strong focus on:
    • Penetration testing
    • Vulnerability testing and assessment
    • Infrastructure security
    • Enterprise cloud and on‑prem security
  • Proven experience working in large enterprise environments with complex infrastructure and multiple stakeholders.
  • Strong understanding of security across:
    • Networks
    • Windows and/or Linux servers
    • Cloud platforms
    • Active Directory / identity environments
    • Virtualized and hybrid infrastructure
  • Experience using common vulnerability scanning, assessment, and security testing tools.
  • Strong knowledge of

Requirements

  • 5+ years of hands-on experience in cybersecurity, with a strong focus on: Penetration testing, Vulnerability testing and assessment, Infrastructure security, Enterprise cloud and on-prem security
  • Proven experience working in large enterprise environments with complex infrastructure and multiple stakeholders.
  • Strong understanding of security across: Networks, Windows and/or Linux servers, Cloud platforms, Active Directory / identity environments, Virtualized and hybrid infrastructure
  • Experience using common vulnerability scanning, assessment, and security testing tools.

Responsibilities

  • Conduct and support penetration testing activities across cloud, on-prem, network, application, and infrastructure environments.
  • Perform vulnerability assessments, validation testing, and risk-based analysis of security exposures.
  • Simulate adversarial techniques to identify weaknesses in systems, services, architecture, and configurations.
  • Document findings clearly and provide practical remediation guidance to technical and business stakeholders.
  • Lead enterprise-wide vulnerability identification, prioritization, tracking, and remediation support.
  • Partner with infrastructure, cloud, and application teams to reduce security risk across critical assets.
  • Validate remediation effectiveness through retesting and security control review.
  • Improve vulnerability management processes, tooling, reporting, and operational maturity.
  • Assess and secure workloads across AWS, Azure, and/or hybrid cloud environments.
  • Review identity and access controls, network segmentation, endpoint posture, logging, and configuration baselines.
  • Support security hardening of servers, operating systems, virtualization platforms, and enterprise infrastructure.
  • Identify misconfigurations and control gaps across both cloud-native and traditional on-prem environments.
  • Assist in the implementation and tuning of security controls for infrastructure, endpoints, networks, and privileged access.
  • Support incident response investigations, threat validation, and root cause analysis when required.
  • Contribute to security standards, playbooks, procedures, and technical documentation.
  • Work closely with IT, infrastructure, DevOps, and architecture teams to embed security into day-to-day operations.
  • Align technical security work with enterprise security policies, control frameworks, and regulatory expectations.
  • Support audits, control reviews, and evidence collection related to infrastructure and security operations.
  • Recommend practical improvements based on industry standards and evolving threat landscapes.

Skills

Active DirectoryAWSAzureCloudCybersecurityDevOpsIdentity and Access ManagementInfrastructure SecurityLinuxNetwork SecurityPenetration TestingSecurity ControlsSecurity EngineeringSecurity OperationsVulnerability ManagementWindows

Similar roles

Lead Automation Engineer

UICGS / Bowhead Family of Companies

Technical Product Manager - Data Engineering F/M (Hybrid)

Betclic Group

Senior Professional DevSecOps Engineer (m/w/d) Java - Kompositversicherung (KFZ)

R+V Allgemeine Versicherung AG

Don't send a generic resume

Paste this job description into Mimi and get a resume tailored to exactly what the hiring team is looking for.

Get started free