Your browser does not support javascript! Please enable it, otherwise web will not work for you.

Penetration Testing Engineer @ Amgen Inc

Home > Quality Assurance and Testing

 Penetration Testing Engineer

Job Description

 What you will do 
Lets do this. Lets change the world. In this vital role you will Guide and support junior team members by offering technical advice, conducting code reviews, and sharing knowledge to promote their professional development. Perform security testing (e.g., penetration testing, code reviews) and ensure continuous security monitoring across the organizations IT landscape.  
 Identify vulnerabilities in networks, systems, applications, and infrastructure through hands-on penetration testing.  
 Attempt to exploit discovered vulnerabilities to demonstrate their impact and prove their existence (e.g., retrieving sensitive data, elevating user privileges, or gaining access to admin functionality).  
 Perform assessments on web applications, cloud environments, and network infrastructure.  
 Use automated tools and manual techniques to identify security weaknesses.  
 Conduct advanced post-exploitation tasks to simulate real-world attack scenarios.  
 Work with third-party security vendors for audits, product testing, and external assessments when required.  
 Use automated tools (e.g., Burp Suite, OWASP ZAP, or Acunetix) to identify common vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and others.  
 Document identified vulnerabilities in detail, explaining how they were found, their severity, and their potential impact. Include proof-of-concept (PoC) for critical vulnerabilities.  
 Offer actionable, practical solutions for fixing the vulnerabilities, such as secure coding practices, configuration changes, or security controls.  
 Use risk-based prioritization, categorizing issues by their severity and business impact (e.g., high, medium, low) to help the organization focus on the most critical issues.  
 Continuously learn about the latest vulnerabilities, exploits, and security trends.  
 Present the findings to stakeholders, security teams, and management, explaining the business risk and potential impacts of the vulnerabilities discovered.  
 Familiarity with industry standards and compliance requirements (e.g., PCI-DSS, NIST, ISO 27001) and their relevance to penetration testing.   What we expect of you 
We are all different, yet we all use our unique contributions to serve patients. This role has a strong focus on ensuring the organization's infrastructure, applications, and systems are secure from external and internal threats. This role is responsible for conducting authorized security tests on IT infrastructure to evaluate the strength of its systems against potential cyberattacks. A variety of automated tools and manual techniques are leveraged to simulate real-world attacks. The penetration tester then works with the organization to prioritize, remediate and report on identified issues, strengthening the overall security posture. Basic Qualifications:
  • Bachelors degree with 6 - 8 years of experience in Computer Science, Cybersecurity or Information Systems related field .
  • Preferred Qualifications: Must-Have Skills:
  •  
     Strong knowledge of common vulnerabilities (e.g., OWASP Top 10, SANS Top 25), network protocols, encryption standards, application security and common penetration testing methodologies (ISSAF, OSSTMM, PTES).  
     Familiarity with tools like Burp Suite, OWASP ZAP and Metasploit.  
     A deep understanding of web application architecture, databases, and authentication mechanisms.  
     Ability to think critically and creatively when testing and attempting to exploit vulnerabilities.  
     Good-to-Have Skills:
  •  
     Experience with threat intelligence and incorporating emerging threats into penetration testing practices  
     Proficiency in scripting and automation (e.g., Python, Bash) is a plus  
     Professional Certifications (please mention if the certification is preferred or mandatory for the role):  
     PreferredeJPT, eCPPT, eWPT, OSCP, OSWA, GWAPT  
      
      
     What you can expect of us 
    As we work to develop treatments that take care of others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, well support your journey every step of the way.In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards. Apply now for a career that defies imaginationObjects in your future are closer than they appear. Join us. careers.amgen.com As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other and live the Amgen values to continue advancing science to serve patients. Together, we compete in the fight against serious disease.Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or any other basis protected by applicable law.We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
  • Job Classification

    Industry: Pharmaceutical & Life Sciences
    Functional Area / Department: Engineering - Software & QA
    Role Category: Quality Assurance and Testing
    Role: Blockchain Quality Assurance Engineer
    Employement Type: Full time

    Contact Details:

    Company: Amgen Inc
    Location(s): Hyderabad

    + View Contactajax loader


    Keyskills:   web application architecture networking protocols dbms authentication protocols application security python burp suite cyber security spring owasp zap java encryption computer science metasploit textile designing bash information systems

     Fraud Alert to job seekers!

    ₹ Not Disclosed

    Similar positions

    Selenium Automation Test Engineer

    • Ness
    • 4 - 8 years
    • Hyderabad
    • 2 days ago
    ₹ Not Disclosed

    Test Automation Engineer

    • Capgemini
    • 3 - 6 years
    • Hyderabad
    • 2 days ago
    ₹ Not Disclosed

    Principal Engineer Wireless (OAM Development)

    • Tejas Networks
    • 15 - 20 years
    • Bengaluru
    • 22 hours ago
    ₹ Not Disclosed

    Test Automation Engineer - Playwright or WebdriverIO

    • Testing Mavens
    • 4 - 9 years
    • Kolkata
    • 2 days ago
    ₹ Not Disclosed

    Amgen Inc

    Kalam Academy is a coaching institute located in Jaipur, Rajasthan, India. The institute offers coaching for various competitive exams such as IAS, RAS, Teachers(Grade I,II,III), SSC, Bank, Othe Rajasthan Exam\r\nAll the courses offered by Kalam Academy Sikar include comprehensive study material