Information Security Analyst - I
ASTRA by Czar Securities
About Us
Astra is a cybersecurity SaaS company that makes otherwise chaotic pentests a breeze with its one-of-a-kind AI-led offensive Pentest Platform. Astra's continuous vulnerability scanner emulates hacker behavior to scan applications for 15,000+ security tests.
CTOs and CISOs love Astra because it helps them to achieve continuous security at scale, fix vulnerabilities in record time, and seamlessly transition from DevOps to DevSecOps with Astra's powerful CI/CD integrations. Astra is loved by 1000+ companies across 70+ countries. In 2024 Astra uncovered 2.5 million+ vulnerabilities for its customers, saving customers $110M+ in potential losses due to security vulnerabilities.
We've been awarded by the President of France Mr. François Hollande at the La French Tech program and Prime Minister of India Shri Narendra Modi at the Global Conference on Cyber Security. Loom, MamaEarth, Muthoot Finance, Canara Robeco, Dream 11, OLX Autos etc. are a few of Astra’s customers.
Job Description
This is a remote position.
About us:
Astra is a cyber security SaaS company that makes otherwise chaotic pen-tests a breeze with its one of a kind Pentest Platform. Astra's continuous vulnerability scanner emulates hacker behavior to scan applications for 8300+ security tests. CTOs & CISOs love Astra because it helps them fix vulnerabilities in record time and move from DevOps to DevSecOps with Astra's CI/CD integrations.
Astra is loved by 650+ companies across the globe. In 2023 Astra uncovered 2 million+ vulnerabilities for its customers, saving customers $69M+ in potential losses due to security vulnerabilities.
We've been awarded by the President of France Mr. François Hollande at the La French Tech program and Prime Minister of India Shri Narendra Modi at the Global Conference on Cyber Security. Loom, MamaEarth, Muthoot Finance, Canara Robeco, ScripBox etc. are a few of Astra’s customers.
- Carrying out VA/PT for web apps, mobile apps, Cloud infrastructure, SaaS apps, network devices, open-source projects etc.
- Developing and testing rule sets for our DAST scanner.
- Interacting with clients over remediation calls.
- Facilitating clients to map out the steps for fixing vulnerabilities.
- Maintaining our vulnerability management system.
Requirements
- CEH or OSCP or CREST certified
- 1-3 years of experience in doing pentests on multiple assets including web apps, cloud infrastructure etc. Comfortable in Black Box/WhiteBox testing with capability of finding business logic vulnerabilities
- Experience directly interfacing with customers over calls & emails
- Able to write & understand code in any one programming language.
Good to have:
- A few published CVE’s
- Good bug bounty/CTF experience
Benefits
Embrace the cosy remote work lifestyle.
Feel the startup adrenaline pumping through your veins.
Your brilliance showcased to thousands of eager readers and users.
Revel in our open, growth-centric ambiance; it's like a digital playground.
Dive deep into the captivating world of cybersecurity.
And yes, get ready for some unforgettable workcations—think Chikmagalur & Jim Corbett.
