Penetration Testing Manager

• Perform penetration testing which includes internet, intranet, wireless, web application, social
engineering, and physical penetration testing.
• Execute red team scenarios to highlight gaps impacting organizations security postures.
• Ability to work both independently as well as lead a team of technical testers on penetration testing
and red team engagements.
• Provide technical leadership and advise to junior team members on attack and penetration test
engagements.
• Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations.
• Perform in-depth analysis of penetration testing results and create report that describes findings,
exploitation procedures, risks, and recommendations.
• Execute penetration testing projects using the established methodology, tools, and rules of
engagements.
• Convey complex technical security concepts to technical and non-technical audiences including
executives.
• Develop and maintain productive working relationships with client personnel
• Build strong internal relationships within EY Advisory Services and with other service lines across the
organization.

Qualification
Graduates /BE / M Sc (Stats, Maths, Computer Science) / MBA with background in computer

science and programming /MCA with minimum 8 years of work experience in penetration testing

which includes internet, intranet, web application penetration tests, wireless, social engineering,

and Red Team assessments.

• Knowledge of Windows, Linux, UNIX, any other major operating systems.

• Deep understanding of TCP/IP network protocols.

• Deep understanding and experience with various Active Directory attack techniques.

• Understanding of network security and popular attacks vectors.

• An understanding of web-based application vulnerabilities (OWASP Top 10).

• Experience with manual attack and penetration testing.

• Experience with scripting / programming skills (e.g., Python, PowerShell, Java, Perl etc.).

• Updated and familiarized with the latest exploits and security trends.

• Experience to lead a technical team to conduct remote and on-site penetration testing within

defined rules of engagement.

• Familiarity to perform network penetration testing in stealth manner.

• Understanding of software security, network security, and information technology management

technologies and principles

• Knowledge of vulnerability management, patch management, and configuration management

best practices