Penetration Testing Jobs

We are seeking a highly skilled Cyber Security Engineer with 10 to 18 years of experience to join our team in Chennai. The ideal candidate will possess a strong background in protecting networks, systems, and data from cyber threats.**Key Responsibilities:**- **Threat Analysis and Mitigation:** Identify potential security threats and vulnerabilities, assess risks, and implement measures to mitigate them effectively. This ensures that sensitive information remains protected against evolving threats.- **System Monitoring and Maintenance:** Regularly monitor and maintain security systems and tools to ensure they function optimally. This includes updating software and applying security patches to safeguard against new vulnerabilities.- **Incident Response and Recovery:** Act promptly in the event of a security breach, investigating incidents, documenting findings, and implementing recovery plans to restore systems to normal operations.- **Security Policy Development:** Develop and enforce security policies and procedures that align with industry best practices. This helps cultivate a culture of security awareness throughout the organization.- **Training and Awareness Programs:** Conduct training sessions for staff on cybersecurity practices and the importance of maintaining security protocols, enhancing the overall security posture of the organization.**Required Skills and Expectations:**Candidates should have a degree in B.C.A, B.E, or a relevant professional qualification. In-depth knowledge of security protocols, risk assessment tools, and firewalls is essential. Familiarity with compliance requirements and standards such as ISO 27001, NIST, or GDPR is highly desirable. Strong analytical and problem-solving skills, along with excellent communication abilities, are critical for collaborating within teams and educating others on security matters.

Job Overview: The Cybersecurity Project Coordinator ensures that cybersecurity projects are planned, executed, and completedwithin scope, time, and budget. This role works closely with cross-functional teams, including IT, riskmanagement, legal, and compliance departments, to implement and enhance security protocols and systems.Key ResponsibilitiesProject Management: Oversee multiple cybersecurity projects from initiation to completion. Develop and maintain project timelines, budgets, and schedules. Coordinate project resources, assign tasks, and monitor progress. Prepare and present regular project status reports to stakeholders.Risk Assessment and Compliance: Ensure all projects adhere to internal and external cybersecurity standards and regulations (e.g., GDPR,HIPAA). Conduct risk assessments and work with teams to mitigate identified threats.Stakeholder Communication: Act as the main point of contact between cybersecurity teams and other departments. Communicate cybersecurity project needs, progress, and outcomes effectively to non-technicalstakeholders.Coordination with Cybersecurity Teams: Work with IT security engineers, analysts, and other specialists to ensure security measures areimplemented as part of the project scope. Track project milestones and identify any barriers to success.Documentation and Reporting: Create detailed documentation for cybersecurity processes, procedures, and incident reports. Maintain project records for future reference and audit purposes.Continuous Improvement: Stay updated with the latest cybersecurity threats, technologies, and best practices. Provide feedback on project successes and areas of improvement to senior leadership.Skills & Qualifications: Educational Background: Bachelors degree in Cybersecurity, Information Technology, or a relatedfield. Experience: Proven experience in project management, preferably in cybersecurity or IT roles. Certifications: PMP (Project Management Professional), CISSP (Certified Information Systems SecurityProfessional, or equivalent, cybersecurity certifications. Skills:o Strong organizational and communication skills.o Familiarity with project management software (e.g., Microsoft Project, Asana, Jira).o Knowledge of cybersecurity principles and risk management frameworks.o Ability to work collaboratively in a team-oriented environment.o Basic understanding of IT infrastructure and security technologies (e.g., firewalls, encryption,intrusion detection systems). Flexible to working second and night shifts. Work location can be remote, WFH/Hybrid mode.Base Location: Hyderabad / Bangalore;

Role OverviewQuasar CyberTech is hiring a Senior Security Consultant with strong hands-on experience in Vulnerability Assessment and Penetration Testing (Web, API, Mobile, Network). Perform configuration audits for Network and Cloud Infrastructure. You will be leading technical assessments; handle client and stakeholders end to end ensuring quality deliverables.Key Responsibilities Perform detailed manual and automated VAPT for web, mobile, API, network and cloud environments. Perform Network Architecture, Configuration Audits (network devices), Firewall Rule Review, Database Security Analysis Conduct secure code review activity and collaborate with dev and infra teams for remediation support. Identify and validate vulnerabilities, prepare detailed technical and executive summary reports, along with mitigation reports. Manage end-to-end client engagements, including scoping, testing, reporting, and stakeholder communication. Mentor team members and contribute to research and development, and internal security improvement initiatives. Have an ownership attitude to resolve issues on own or with the help of othersTechnical Expertise Tools: Burp Suite, OWASP ZAP, Metasploit, Nmap, Nessus, Wireshark, Aircrack-ng, MobSF, Drozer etc. Frameworks: OWASP Top 10, NIST 800-115, PTES, ISO 27001, WASC Threat Classifications etc. Skill Secure Coding, Python, API & Cloud Security (AWS/Azure/GCP), DevSecOps etc. Advantage: Knowledge of Incident Response, CI/CD and automation pipelinesQualifications & Competencies Bachelors/Masters in Computer Science, Information Security, or related field Minimum 3.5+ years of penetration testing or security consulting experience Excellent communication with ability to clearly articulate thoughts, be convincing and, deliver presentation and training to management, Leadership skills with strong delivery ownership Enthusiastic and committed to the work Must have a valid passport and willingness to travel internationally (Middle East and other client sites)Preferred CertificationsCandidate must have industry-leading certifications like CEH (Practical)/OSCP/ GPEN/ GWAPT/ECSA/ CPENT/ CISSP or CISM LPT, CEPT or equivalent

Were offering a competitive salary of $12,000 to $15,000 a month for our next IT Security Analyst!We're looking to hire an expert to help us keep our network and systems safe from cyber attacks. You'll be responsible for keeping an eye on security issues, figuring out what needs to be done, coming up with solutions, and doing security audits and tests. Plus, you will help staff and stakeholders stay on top of security awareness and training.Benefits: Health Insurance Performance bonus Paid leave Flexible work arrangements with possibility of work-from-home good for single parents, women, minorities, etc.To apply, please follow these instructions:1. Search on Google for Total Shape then go to our Jobs page from the homepage. This is a test to see how well you follow instructions, given that we have hundreds of applicants competing for the position.2. Once you reach the Jobs page, fill out the Google Form there. Upload the CV in PDF format using the Google Form.3. We will contact you if we believe youre a good fit. But if you get no response within two (2) weeks, feel free to follow up by sending an email to our careers email with the subject line in this format: Position Applied For - Total Shape.*** Due to the large volume of applications we receive, we will only reply to those we deem qualified for the positions applied for.We will not reply to messages sent to our social media accounts about job applications -- all communications from us will only be sent via email.If you don't receive a message, please feel free to re-apply after 6 months to another opening suitable for you in our company. ***Your responsibilities will include: Monitoring and analyzing network and system activity Investigating and responding to security incidents Escalating security incidents and alerts Installing and configuring security software and hardware Performing security audits and assessments Developing and implementin

Urgent Hiring: Senior Security Consultant(VAPT)Location: South Delhi, New DelhiJob Type: Full-Time, OnsiteExperience: 3-6 YearsJoining:ImmediateRoles and Responsibilities:- Conduct Vulnerability Assessments, Penetration Testing, Device Hardening, Application Security assessments, Log Review, Review of Documents, Network Monitoring and Reporting- Conduct and compile findings on new vulnerabilities, new tools for departmental use-Create project deliverables / reports and assist the immediate supervisor during submissions and client discussions-Abide by the project time lines and maintain project disciplineTechnical Skills Required : Experience in performing Network Security Assessment and vulnerability Assessment.Well versed with basics of TCP/ IP and Networking principles.Good understanding of OWASP top 10 and web Application security audits.Manual Penetration Testing skills and techniques are required besides automated tools and frameworks.Familiar working with Publicly available exploits codes.Hands on knowledge on Tools : Nmap, Kali Linux, Metasploit, Armitage , Maltego, Burp, Paros Proxy Nessus, nexpose, wireshark, sqlmap etc.Qualification:Bachelor or college degree in related field or equivalent work experienceCertified Ethical Hacker (CEH)Certifications such as OSCP (Offensive Security Certified Professional) / CPTC (Certified Penetration Testing Consultant) / License Penetration Tester (LPT) are highly desiredExpertise BurpSuite Pro, Nessus, Coverity, CodeSonar and network vulnerability scanning toolsOther requirements Excellent problem-solving/analytical skillsGood business communication skillsAbility to manage tight time frames and communicate effectively with peersFlexibility to adapt to changing demands and prioritiesHow to Apply: Interested candidates are invited to submit their resume to- v.tamanna@trojanhuntindia.com

Position Overview:As a cybersecurity enthusiast, your expertise will guide us through the complexities of cyber threats, vulnerabilities, and incident responses. This role demands a strategic thinker with a meticulous attention to detail and a relentless pursuit of excellence in cybersecurity defense.Roles and Responsibilities:Conduct risk assessments, vulnerability analyses, and penetration tests to identify security gaps.Collaborate with our team to develop and implement cutting-edge security measures.Monitor our security infrastructure for unauthorized access, initiating effective mitigation strategies.Continuously improve our security policies and practices to uphold the highest standards.Stay updated on cybersecurity trends to enhance our defense mechanisms.Key Skills and Qualifications:Ethical hacking and cybersecurity experience, preferably (CEH)certification.Deep knowledge of cybersecurity principles and ethical hacking.Proficiency in security tools (e.g., Nmap, Burp Suite, Metasploit).Understanding of network protocols and vulnerabilities.Exceptional analytical and problem-solving skills.Effective communication and teamwork skills.Relevant Bachelor's or Master's degree.Who Should Apply:Cybersecurity professionals eager to apply their skills in a dynamic setting.Those passionate about ethical hacking and cybersecurity innovation.Individuals aiming to make a significant impact in cyber threat protection.

Job Title :- Senior Penetration TesterWe are looking for Senior Penetration Tester to join our security team & as the Senior Penetration Tester, you will be thought leader in the field of cybersecurity. With your experience and proficiency in various penetration testing methodologies and drive the technology roadmap within the organization. This is a unique opportunity to shape the future of cybersecurity services while mentoring and guiding the next generation of pen testers.Job Description:Qualysec Technologies is seeking a skilled and highly motivated Senior Penetration Tester to join our fabulous security team in Bhubaneswar. The Senior Penetration Tester will having deep knowledge of security testing of Web, Network, Cloud & Mobile applications etc.Qualification:- Bachelor's Degree in a related Cybersecurity/IT/Computer Science field. Must have cyber security certification like CEH,OSCP, eCPPT, Ejpt etc.Experience:- 2 to 4 yearsLocation:- BhubaneswarJob Type:- Full TimeResponsibilities Penetration Testing Mastery: Leverage your extensive experience to conduct advanced penetration tests across all domains, including web applications, network infrastructure, cloud environments, mobile applications, and more. Mentorship : Serve as a mentor and guide to junior pen testers, sharing your knowledge, skills, and best practices to nurture their growth and development. Client Engagement: Providing strategic guidance, understanding their unique security needs, and delivering tailored solutions that exceed expectations. Product Proficiency: Demonstrate expertise in multiple penetration testing tools and products, ensuring that the team has access to the best tools for the job.Skills Required Excellent communication and presentation skills, both written and verbal. Manage and coordinate penetration testing teams. Exceptional problem-solving skills, strategic thinking, and the ability to influence.Strong knowledge of security assessment tool

Job Responsibilities:6+ Years of work experience in the Cyber security domain. (Specifically Application Security/Pen testing).Should have good knowledge of Mobile, Web application pen testing and secure coding practices.Should have experience in leading a penetration testing team.Strong exposure and working knowledge of popular application security standards including OWASP top 10, SANS Top 25, etc.Knowledge of rating standards such as CVSS, DREAD, STRIDE, etc.Should have knowledge of Threat modeling.Good working knowledge of Open Source security solutions.Should be an out-of-the-box thinker and propose solutions to complex security problems.Good with any scripting languages.Should have good communication skills and mentoring skills.Should be a cyber sec enthusiast who will willing to explore areas other than Application security/Pen testingShould have the zeal to explore other areas of cyber security apart from Appsec as and when the opportunity arises.Mandatory Skills: VAPT, Appsec, Threat Modelling, Mobile AppsecAdditional Skils:Should have the zeal to explore other areas of cyber security apart from Appsec as and when the opportunity arises.

The major focus will be on Application Penetration testing followed by Network Penetration Testing and Mobile Security assessments, Red Team Assessment, Phishing, IoT, Cloud Pen testing (Azure and AWS, Google Cloud), Cloud Configuration Audit, Architecture Review. The work involves Test Case Creation, Penetration Testing, Source code reviews, Report Creation & presentation to stakeholders along with operation and construction of tools to assist in these tasks. Well versed with OWASP Top Ten and WASC Threat Classifications Expertise in Vulnerability Assessment and Penetration Testing of Web Applications BusinessLogic based application testing Penetration testing of Mobile applications and websites. Exploitation of the issues found and presenting the impact occurred Source Code Reviews Well versed in Java Secure Code Review Well versed in OWASP Code Review concepts & identifiers Familiar with popular tools: Application Proxy: Burp suite, Paros, OWASP ZAP, WireShark, Vulnerability Scanners: IBM AppScan, HP WebInspect, Nessus, NTO Spider. Exploit Toolkits: Metasploit, Exploit DB etc Understanding of the nature and sources of security vulnerabilities, how to identify and exploit Sound Knowledge of TCP/IP protocol Stack, HTTP protocol, encoding standards, encryption technologies and development frameworks. Skills Mandatory: Application Security Testing/Penetration Testing (Web-based, Thick client, web services, Mobile) Network Security Testing/Penetration Testing (Network, OS, Databases etc) Static Code Analysis/ Secure Code Review

ResponsibilitiesDevelop approaches to identify vulnerabilities and understand impact surfacePerform penetration tests on web applications, network devices, and cloud infrastructuresPinpoint methods and entry points that attackers may use to exploit vulnerabilities or weaknessesSearch for weaknesses in common software, web applications and proprietary systemsResearch, evaluate, document and discuss findings along with recommendation to fix and/or mitigate the vulnerabilitiesReview and provide feedback for information security fixesEstablish improvements for existing security services, including hardware, software, policies and proceduresIdentify areas where improvement is needed in security education and awareness for usersBe sensitive to corporate considerations when performing testing (i.e. minimise downtime and loss of employee productivity)Stay updated on the latest malware and security threatsCommunicate findings to both technical staff and executive leadershipSkillsShould have attackers mindset and coding skill required to infiltrate systemsResearch inclination to go deeper and develop custom exploitation approachesComprehensive knowledge of web security(OWASP and more), including forensics, systems analysis and moreInsight into how hackers exploit the human element to gain unauthorised access to secure systemsClear understanding of how computer security breaches can disrupt business, including the financial and managerial implicationsExceptional problem-solving skillsCommunications skills to document and share your findings(preferred) certification in Cyber security or bug bounty experience(preferred) Understanding of CIS, NIST and other cyber security frameworks(preferred) exposure to open-source tools for vulnerability assessment (Nmap, SqlMap, Zap etc.) exposure to authorization systems

JOB RESPONSIBILITIES Have a strong conceptual knowledge of IT Security Knowledge of IT Security principles, techniques and technologies (including IDS/IPS, Firewalls, Vulnerability Management, Pen testing) Create and update security threat assessment reports and Mitigation plans. Security patch management Fix known and unknown vulnerabilities Monitor network activities & update network diagrams. Taking offline backup & perform restore Perform Datacentre equipment challenge test Hands on knowledge of wireshark and SIEM tools Hands on knowledge on cisco network (routing and switching) Hands on knowledge on Kaspersky AV & EDR solution Practical knowledge on deception technologyFirewall & VPN- Routing, NAT, ACL, Object-Group- VPNs, MPF, VPN Load Balancing- Zero-down-time-upgrade, Firewall management etc.- Failover Active-Standby & Active-Active- Site-Site VPN, Remote Access VPNWeb Security & Network Management:- Worked on technologies like URL filtering- Bandwidth management, Malware protection- AD integration, Proxy authenticationIDS/IPS:- Worked on technologies like VLAN-pair- Interface-pair, Signature tuning, Monitoring, logs.

Mrwebsecure is an leading cybersecurity training Organisation that delivers an extensive hands-on understanding of diverse cyber and information security domains. Mrwebsecure is an eminent security training provider dedicated to bridge the cybersecurity skill and education gap through implementation-centric learning programs designed by Certified Instructors.Partnered with EC-Council, we are a team of dedicated and certified trainers having an unparalleled understanding of the most sought-after domains like ethical hacking, Penetration testing and many more. We enable aspiring IT and security experts to attain the highest efficacies in a fully-equipped lab environment.Cyber security Trainer #hiringexperience: 06 month to 1 yearQualification: Bachelor/ Masters degreeLocation: Mumbai only ( If outside Mumbai then should be willing to relocate)Work from Office.Certification preferred: CEH/ or any in cybersecurity domainKnowledge /skills required: A strong stage presence and ability to manage a classroom experienced learners. Passion for training, technology and maintaining customer relationsNote- Technical Trainers with hands on experience and Or in depth expertise in appropriate areas full time are prefered.Job responsibilities - Develop and maintain Training materials, such as lab exercises, presentations and Handouts. Deliver classroom and online training to individuals and corporations from various work streams.Should be well versed with the cybersecurity knowledge that is required.

We are hiring here Anzen Technologies Private Limited for the position of Information Security Consultant.Job Title: Infosec Consultant. Level: L2Job Type: Full-Time Location: Mumbai.Key Roles & Responsibilities:Handling various security solutions listed below. Web Application Firewall. Cloud WAF. Cloud Security. Application Security Assessment. Mobile Application Security Testing. API Security Assessment.. Vulnerability Assessment and Penetration testingQualifications: A Bachelor's/ Masters degree in Computer science, Information Security, or a related field.Skills & ExperienceExperience: Minimum of 2 years' experience in Information security domain.Skills Required:Consultant must have hands-on experience in various areas;Web Application Security Assessment.Mobile Application Security Assessments.Secure Code Review.Threat Modelling.Secure Architecture Review.Configuration Audit.Firewall Rule Review.Network Vulnerability Assessments & Penetration Testing.Contact Person- Arpita Singh

Hands-on Experience is performing Web, mobile, network, and cloud security assessments.Hands-on experience and understanding of advance Pen testing methodologiesHands-on experience and understanding of Vulnerability assessment and penetration testingShould have a good understanding of attack surface, threat modelling, OWASP top 10, ASVS, SourceCode reviews.Familiar with both automated and manual testing of applicationsHands-on knowledge of Tools: Burp Suite, Kali Linux, Metasploit, NMAP, Nessus, Nexpose, Wireshark,sqlmap, etc.Knowledge of Programming (Java, Python, Golang).Should have a good report writing skill and assist the team in creating reports.Develop and maintain security testing plans for clientsCritical thinker and problem solverShould be able to work independently and communicate with clients to understand their requirementsShould have the ability to present security reports to clientsAbilities:Good in written and spoken English.Must be able to communicate with the client team

. Conduct ISMS audit for clients Develop and maintain audit checklist and documents. Maintain active communication with clients to manage expectations, ensure satisfaction, make sure deadlines are met, and lead change efforts effectively. Maintain and enhance audit work paper templates. Conduct frequent testing of simulated cyber-attacks to look for vulnerabilities in the computer systems and take care of these before an outside cyber-attack. Performing both internal and external security audits. Making an audit Audit Report for ISO 27001, 27701, 22301, PCI DSS, SOC 2 and submission to senior manager. Providing the pre-audit committee with the audit findings. Monitoring the implementation of audit recommendations.

Security AnalystLocation- Chennai ( no work from home)0-2 years experience in Web Application testing & mobile Application testingGood communication skillsPreffered immediate joining