Security Specialist at Ericsson

Bengaluru, karnataka, India -

Full Time

Start Date

Immediate

Expiry Date

21 Jan, 26

Salary

0.0

Posted On

23 Oct, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Penetration Testing, Security Assessments, Cloud Security, Threat Modeling, Vulnerability Management, Custom Scripting, Technical Reporting, Risk Assessment, Red Team Operations, CI/CD Pipelines, Kubernetes, Secure Code Review, Troubleshooting, Distributed Storage, Service Mesh, Web Application Development

Industry

Telecommunications

Description

Plan and execute penetration tests and security assessments for web applications, APIs, network infrastructure, cloud (AWS, Azure, GCP), and internal environments. Conduct threat modeling and attack surface analysis to define realistic test scopes and objectives. Exploit vulnerabilities safely to demonstrate business impact and validate findings. Develop proof-of-concept exploits, custom scripts, and lightweight tools when necessary. Perform privilege escalation, pivoting, and persistence testing in controlled environments. Produce clear, well-structured technical reports including risk ratings, evidence, remediation guidance, and executive summaries. Present findings to technical and non-technical stakeholders; run remediation workshops and retests. Keep up to date with emerging attack techniques, vulnerability disclosures, and defensive controls. Contribute to internal tooling, playbooks, and knowledge sharing. Follow legal, ethical, and client-specified rules of engagement and maintain strict confidentiality. Experience testing cloud environments (IAM misconfigurations, excessive privileges, server-side issues) and familiarity with cloud security best practices. Ability to communicate complex technical findings to non-technical stakeholders. Experience writing custom scripts using Python, Bash, or PowerShell. OSCP, OSWE, CPTS, CEH Practical or similar Experience with red team operations, adversary simulation, or blue/purple team collaboration. Familiarity with CI/CD pipelines, container orchestration (Kubernetes), and IaC security issues(Terraform or ansible). Experience with vulnerability management platforms, bug bounty triage, or secure code review. Experience in securely exposing Kubernetes services using Service Mesh technologies such as Istio, Kong or Linkerd, with proxies like Envoy. Experience developing web applications with React, JavaScript, HTML5. Troubleshooting skills and the ability to interpret logs (system, application, and security) to identify, correlate, and resolve issues. Familiarity with distributed storage solutions like S3, CEPH.

Responsibilities

Plan and execute penetration tests and security assessments for various environments. Produce clear technical reports and present findings to stakeholders.