Apply Online

Lead – Offensive Security

  • Location: Kochi-Kerala
  • Department : Network & Security
  • Minimum Required Experience : 3.0
  • Full Time

Skills

  • Cloud Security
  • Penetration Testing
  • User Access Management Tools
  • Firewall Management
  • Vulnerability Management

Title: Lead – Offensive Security

Department: Security Assurance Team

Summary: As a Lead – Offensive Security, you will be part of the Security Assurance Team responsible for evaluating and strengthening Lulu Retail’s cybersecurity posture. This role contributes to the broader objectives of IT security, cyber resilience, and regulatory compliance.

Essential Duties & Responsibilities

• Plan and execute periodic offensive security testing, including: Vulnerability Assessments Penetration Testing WiFi Security Testing Network Segmentation Testing PCI-DSS ASV Scan Active Directory security audits Red Teaming activities

• Perform cloud security assessments (AWS & Azure), identifying misconfigurations and architectural flaws

• Conduct CVE analysis, risk prioritization, and remediation tracking

• Ensure security testing is conducted on schedule, risks are mitigated and practices align with compliance programs

• Collaborate with developers, DevOps, and IT teams to remediate vulnerabilities and implement security best practices

• Generate and deliver comprehensive reports; track remediation activities through closure

• Schedule and lead meetings with asset owners to explain vulnerabilities, share best practices, and recommend remedial actions

Education/Experience

• Bachelor’s degree in Computer Science or related field

• Minimum 3 years of relevant experience in cybersecurity

• Certifications such as CEH, ECSA, CHFI, or other recognized cybersecurity credentials are highly recommended

• Strong understanding of Penetration testing and vulnerability/patch management practices and advanced cyber threats and mitigation strategies

• Proficient in IT security tools and platforms: Anti-malware, Firewalls, IPS, DLP, Web proxies, Email Security, Cloud Security (AWS & Azure), Privileged Access Management, IAM

• Familiarity with security frameworks and standards: OWASP, NIST 800-64, PCI-DSS, ISO 27001, GDPR

• Excellent communication and interpersonal skills

• Strong organizational and time management skills

• Ability to work both independently and collaboratively in a team environment