Senior Security Engineer – Penetration Testing, Vulnerability Management & Enterprise Infrastructure Security
Interscripts, Inc.
- Kondapur, Telangana Hyderabad, Telangana
- Permanent
- Full-time
- Conduct and support penetration testing activities across cloud, on-prem, network, application, and infrastructure environments.
- Perform vulnerability assessments, validation testing, and risk-based analysis of security exposures.
- Simulate adversarial techniques to identify weaknesses in systems, services, architecture, and configurations.
- Document findings clearly and provide practical remediation guidance to technical and business stakeholders.
- Lead enterprise-wide vulnerability identification, prioritization, tracking, and remediation support.
- Partner with infrastructure, cloud, and application teams to reduce security risk across critical assets.
- Validate remediation effectiveness through retesting and security control review.
- Improve vulnerability management processes, tooling, reporting, and operational maturity.
- Assess and secure workloads across AWS, Azure, and/or hybrid cloud environments.
- Review identity and access controls, network segmentation, endpoint posture, logging, and configuration baselines.
- Support security hardening of servers, operating systems, virtualization platforms, and enterprise infrastructure.
- Identify misconfigurations and control gaps across both cloud-native and traditional on-prem environments.
- Assist in the implementation and tuning of security controls for infrastructure, endpoints, networks, and privileged access.
- Support incident response investigations, threat validation, and root cause analysis when required.
- Contribute to security standards, playbooks, procedures, and technical documentation.
- Work closely with IT, infrastructure, DevOps, and architecture teams to embed security into day-to-day operations.
- Align technical security work with enterprise security policies, control frameworks, and regulatory expectations.
- Support audits, control reviews, and evidence collection related to infrastructure and security operations.
- Recommend practical improvements based on industry standards and evolving threat landscapes.
- Penetration testing
- Vulnerability testing and assessment
- Infrastructure security
- Enterprise cloud and on-prem security
- Networks
- Windows and/or Linux servers
- Cloud platforms
- Active Directory / identity environments
- Virtualized and hybrid infrastructure
Ability to communicate technical issues clearly to both engineering teams and leadership audiencesPreferred Technical Experience
- Experience securing AWS and Azure enterprise environments.
- Familiarity with:
- Vulnerability management platforms
- SIEM / log analysis tools
- EDR / endpoint security tools
- Web and infrastructure security testing tools
- Network security validation tools
- Security baselines and hardening
- Firewalls, VPNs, segmentation, NAC, and access controls
- Identity and privilege security
- Patch governance and remediation tracking
- OSCP – Offensive Security Certified Professional
- CEH – Certified Ethical Hacker
- GPEN – GIAC Penetration Tester
- CISSP – Certified Information Systems Security Professional
- GSEC – GIAC Security Essentials
- CompTIA Security+
- AWS Security Specialty
- Microsoft Azure Security Engineer Associate (AZ-500)