ZS is a place where passion changes lives. As a management consulting and technology firm focused on improving life and how we live it , our most valuable asset is our people. Here you'll work side-by-side with a powerful collective of thinkers and experts shaping life-changing solutions for patients, caregivers and consumers, worldwide. ZSers drive impact by bringing a client first mentality to each and every engagement. We partner collaboratively with our clients to develop custom solutions and technology products that create value and deliver company results across critical areas of their business. Bring your curiosity for learning; bold ideas; courage an d passion to drive life-changing impact to ZS.
Our most valuable asset is our people .
At ZS we honor the visible and invisible elements of our identities, personal experiences and belief systems-the ones that comprise us as individuals, shape who we are and
make us unique. We believe your personal interests, identities, and desire to learn are part of your success here. Learn more about our diversity, equity, and inclusion efforts and the networks ZS supports to assist our ZSers in cultivating community spaces, obtaining the resources they need to thrive, and sharing the messages they are passionate about.
ZS Associates is hiring Senior Offensive Security Analyst in our Pune, India office. Qualified candidates will be responsible for conducting advanced penetration tests and security assessments across cloud and on-premises environments. This role requires strategic and out-of-box thinking, high technical expertise, and effective communication skills to proactively identify and address security risks.
What You'll Do :
- Typical daily work will consist of performing advanced penetration tests on cloud-based and on-premises infra to identify security weaknesses and loopholes.
- Perform Red teaming / Adversary emulations to simulate sophisticated cyberattacks and assess the effectiveness of existing security controls.
- Conduct Purple team exercises in collaboration with Sec-Ops to assess the effectiveness of defensive measures and incident response capabilities through realistic attack simulation.
- Develop and test custom exploits to demonstrate vulnerabilities and assess the potential impact on systems.
- Execute social engineering attacks, such as phishing or vishing, to evaluate the organization's susceptibility to human-centric threats.
- Perform Breach and Attack Simulations using BAS platform across the organization infrastructure.
- Conduct comprehensive cloud penetration tests targeting AWS, Azure, GCP to identify and exploit misconfigurations, insecure interfaces, and vulnerabilities in cloud services and applications.
- Assess and exploit weak IAM configurations, privilege escalation paths, and over-permissioned roles to identify security risks within cloud environments.
- Collaborate with incident response team to provide insights and support during and after security incidents.
- Regularly review and enhance penetration testing methodologies and practices to adapt to evolving threats and technologies.
- Create detailed reports outlining findings from penetration tests, red team exercises, and vulnerability assessments that include clear, actionable recommendations for remediation and risk mitigation.
What You'll Bring :
- Bachelor's in computer science/management of computer information/information assurance or Cybersecurity
- 3+ years of Penetration Testing / Red-Teaming / Offensive Security
- Must have Security Certifications: OSCP / CREST / GPEN
- Must have Cloud Security Certifications: AWS Cloud Practitioner / AWS Solutions Architect
- Preferred Security Certifications: CRTP/CARTP, CRTE, CRTO (I & II), OSEP, OSED, GRTP
- Preferred Security Cloud Certifications: AWS Security Specialty
Perks & Benefits:
ZS offers a comprehensive total rewards package including health and well-being, financial planning, annual leave, personal growth and professional development. Our robust skills development programs, multiple career progression options and internal mobility paths and collaborative culture empowers you to thrive as an individual and global team member.
We are committed to giving our employees a flexible and connected way of working. A flexible and connected ZS allows us to combine work from home and on-site presence at clients/ZS offices for the majority of our week. The magic of ZS culture and innovation thrives in both planned and spontaneous face-to-face connections.
Considering applying?
At ZS, we're building a diverse and inclusive company where people bring their passions to inspire life-changing impact and deliver better outcomes for all. We are most interested in finding the best candidate for the job and recognize the value that candidates with all backgrounds, including non-traditional ones, bring. If you are interested in joining us, we encourage you to apply even if you don't meet 100% of the requirements listed above.
To Complete Your Application:
Candidates must possess work authorization for their intended country of employment.
An on-line application, including a full set of transcripts (official or unofficial), is required
to be considered.
NO AGENCY CALLS, PLEASE.
Find Out More At:
www.zs.com
Top Skills
What We Do
ZS is a management consulting and technology firm that partners with companies to improve life and how we live it. We transform ideas into impact by bringing together data, science, technology and human ingenuity to deliver better outcomes for all. Founded in 1983, ZS has more than 13,000 employees in over 35 offices worldwide.
Why Work With Us
ZS is home to passionate people who embrace innovative thinking, collaboration and a client-first mindset. Welcome to a company where new ideas are celebrated, curiosity is welcomed, learning opportunities are abundant and colleagues become lifelong connections.
Gallery
ZS Offices
Hybrid Workspace
Employees engage in a combination of remote and on-site work.
The Flexible & Connected model is our ZS standard. ZSers decide where it makes the most sense for them to work each day given client or teamwork.