54 Penetration Testing Roles jobs in India
Vulnerability assessment
NMS Consultant
Posted 1 day ago
Job Viewed
Job Description
Tool Proficiency:Demonstrate expertise in security tools, including:• Wallix Bastion• Microsoft PKI• Qualys Vulnerability Scanner• Qualys Cloud AgentHaving knowledge on below tools will be preferable.• Imperva• Trellix Endpoint• Safe Net• Crowd StrikeOperating System Knowledge:• Maintain a good understanding of Linux OS and its security features.Problem Solving & Feedback:• Provide valuable feedback on security tools and processes.• Analyze and solve complex cybersecurity issues.• Suggest and implement improvements to enhance security posture.Scripting & Automation:• Develop scripts for process automation and system integration.• Collaborate on creating efficient workflows to streamline operations.Development Skills:• Possess a solid understanding of Python development for automation and security tasks.• Utilize development tools, such as Git and VSCode, for version control and code management.Key Performance Indicators: • Should have knowledge on Onboarding process of bulk Servers & Users in PAM• Should understand Public Key Infrastructure (PKI), Certification Authorities (CA), Hardware Security Modules (HSM), Registration Authorities (RA), Root CA, Certificate Revocation Lists (CRL), OSCP (Online certificate status protocol).• Monitoring CRL publishing dates.• Troubleshooting Certificate related errors like -Certificate Trust, certificate validity, incorrect Certificate Purpose, incorrect hashing algorithm, enrolment issues etc.• Should have strong troubleshooting Skills on any issues related to PAM (Wallix Bastion)• Proven experience with cybersecurity tools and practices.• Strong analytical and problem-solving skills.• Excellent communication and collaboration skills.• Exposure to SOPs creation related to different processes and incident investigation analysis.• Open to work in shifts 24*7.• Open to work on multiple technologies
This advertiser has chosen not to accept applicants from your region.
0
Vulnerability Assessment and Penetration Testing
Mumbai, Maharashtra
My Corporate Jobs
Posted 1 day ago
Job Viewed
Job Description
**Job Requirements**
- The role would require a person with hands-on experience in Vulnerability assessment and Penetration testing program in Enterprise environment having host of tools and technologies.
- Must have experience in running Vulnerability Management and Penetration testing program.
- Must Have: Experience in Tools for Firewall Evasion, Abuses to IPSec VPN, Border Gateway Protocol, GRE Tunnelling.
- Be able to Perform and lead an assessment or penetration test.
- Must produce management dashboard for open Vulnerabilities and Risk for enterprise.
- Shall be able to provide mitigating controls for open risk and exploits for the enterprise environment.
- Shall maintain risk register for open cyber risks in the enterprise.
- Be able to lead a red team engagement and participate in a purple team engagement.
- Have experience in developing exploits and tooling from vulnerabilities both pre and post exploitation.
- Should have experience with tools Burp suite, Metasploit, Tenable, SQL Map, NMAP, SCAPY, and other tools.
- Conduct vulnerability assessment and penetration testing and configuration review for systems and networks.
- Support and recreate proofs of concept from security reports.
- Good exposure to Cloud Applications like AWS, Azure and other SAAS Applications
- Experience in Automating Security tasks using Python or Java Frameworks is a bonus.
- Should be able to think ""Out of the box"".
- Possess ability to think and implement new attack approaches/vectors.
**Skills**
- Strong oral and written communication, analytical and problem-solving skills, as well as excellent judgment on data analysis.
- Proficient in Stakeholder Management and Team Leadership
- Tools - Burp suite, Metasploit, Tenable, SQL Map, NMAP, SCAPY, and other tools.
**Education Qualification**:
- BE / BTECH
- Additional certification would be an added advantage: CEH, CISA, ISO27001, ISO22301, CISSP
**Experience**:
- 6-8 years of proven experience as lead in VAPT and areas having hand on experience on various tools.
**Job Types**: Full-time, Permanent
Pay: Up to ₹2,000,000.00 per year
**Benefits**:
- Health insurance
- Paid sick time
- Provident Fund
Schedule:
- Day shift
Application Question(s):
- How Many years of Relevant Experience Do you have in VAPT?
Work Location: In person
- The role would require a person with hands-on experience in Vulnerability assessment and Penetration testing program in Enterprise environment having host of tools and technologies.
- Must have experience in running Vulnerability Management and Penetration testing program.
- Must Have: Experience in Tools for Firewall Evasion, Abuses to IPSec VPN, Border Gateway Protocol, GRE Tunnelling.
- Be able to Perform and lead an assessment or penetration test.
- Must produce management dashboard for open Vulnerabilities and Risk for enterprise.
- Shall be able to provide mitigating controls for open risk and exploits for the enterprise environment.
- Shall maintain risk register for open cyber risks in the enterprise.
- Be able to lead a red team engagement and participate in a purple team engagement.
- Have experience in developing exploits and tooling from vulnerabilities both pre and post exploitation.
- Should have experience with tools Burp suite, Metasploit, Tenable, SQL Map, NMAP, SCAPY, and other tools.
- Conduct vulnerability assessment and penetration testing and configuration review for systems and networks.
- Support and recreate proofs of concept from security reports.
- Good exposure to Cloud Applications like AWS, Azure and other SAAS Applications
- Experience in Automating Security tasks using Python or Java Frameworks is a bonus.
- Should be able to think ""Out of the box"".
- Possess ability to think and implement new attack approaches/vectors.
**Skills**
- Strong oral and written communication, analytical and problem-solving skills, as well as excellent judgment on data analysis.
- Proficient in Stakeholder Management and Team Leadership
- Tools - Burp suite, Metasploit, Tenable, SQL Map, NMAP, SCAPY, and other tools.
**Education Qualification**:
- BE / BTECH
- Additional certification would be an added advantage: CEH, CISA, ISO27001, ISO22301, CISSP
**Experience**:
- 6-8 years of proven experience as lead in VAPT and areas having hand on experience on various tools.
**Job Types**: Full-time, Permanent
Pay: Up to ₹2,000,000.00 per year
**Benefits**:
- Health insurance
- Paid sick time
- Provident Fund
Schedule:
- Day shift
Application Question(s):
- How Many years of Relevant Experience Do you have in VAPT?
Work Location: In person
This advertiser has chosen not to accept applicants from your region.
1
Pentester - Vulnerability Assessment & Penetration Testing (VAPT)
Hyderabad, Andhra Pradesh
ProArch
Posted today
Job Viewed
Job Description
We are hiring a hands-on Penetration Tester to lead and execute end-to-end security assessments across Web, Infrastructure, and Cloud environments. As the technical backbone of our lean and growing VAPT practice, you’ll work closely with the Security Lead and directly engage with clients to deliver meaningful, high-impact security outcomes.
Key Responsibilities:
- Perform manual and automated penetration testing across:
- Web Applications (based on OWASP Top 10)
- Infrastructure (external/internal IPs, firewall review, patch audits)
- Cloud Environments (basic Azure/AWS – IAM, Storage, Networking)
- Identify, exploit, and report on vulnerabilities such as SSRF, RCE, IDOR, LFI, and S3 bucket exposures
- Use tools such as Burp Suite , Nmap , SQLMap , Nikto , Nessus/OpenVAS
- Write high-quality, detailed technical reports with:
- Screenshots for PoCs
- Remediation guidance
- Risk severity scoring (preferably CVSSv3 )
- Collaborate with clients to explain findings and provide actionable recommendations
- Contribute to toolchain improvements and lightweight automation (Python/Bash preferred)
Requirements
- 3–6+ years of hands-on experience in at least 2 of the following areas :
- Web Application Penetration Testing (OWASP Top 10)
- Infrastructure VAPT (internal/external, firewall, patch validation)
- Basic Cloud VAPT (AWS or Azure: IAM, Storage, Networking)
- Proficiency in:
- Manual testing techniques , fuzzing, and exploitation
- Burp Suite (Community or Pro)
- Tools like Nmap, SQLMap, Nikto, Nessus/OpenVAS
- Strong understanding of common vulnerabilities and exploitation techniques
Preferred Certifications
- CEH , eJPT , OSCP (or strong portfolio/proof of hands-on skill)
- AZ-500 or AWS Security Specialty (for cloud security exposure)
Good to Have
- Familiarity with scripting for automation (Python, Bash)
- Exposure to CVSSv3 for vulnerability scoring
- Experience with Dradis , Excel-based reporting , or similar tools
This advertiser has chosen not to accept applicants from your region.
2
Senior Consultant - VAPT (Vulnerability Assessment & Penetration Testing)
Pune, Maharashtra
Apt Resources
Posted today
Job Viewed
Job Description
Apt Resources is hiring for our client, a leading cybersecurity services firm, seeking an experienced Senior Consultant – VAPT to join their expert team. The ideal candidate will have deep expertise in infrastructure and application security assessments, penetration testing, and a solid understanding of modern security threats and countermeasures.
Key Responsibilities: Infrastructure VA/PT:- Conduct black-box and grey-box vulnerability assessments and penetration tests on system/network/cloud environments.
- Map network infrastructure, discover ports/services, and audit OS, network, and security configurations.
- Use tools like NMap, Nessus, Metasploit, Kali Linux for exploiting vulnerabilities.
- Stay current with CVEs and threat intelligence relevant to supported technologies.
- Prepare and present detailed findings and mitigation plans to clients.
- Deliver cloud infrastructure security assessments and configuration audits.
- Create and deliver comprehensive, client-specific technical reports.
- Perform vulnerability assessments of Web, Mobile, and Thick-client applications based on OWASP standards.
- Combine automated scanning with manual testing techniques to detect flaws.
- Conduct phishing and spear-phishing simulations to assess end-user security awareness.
Requirements
Qualifications:- Bachelor's degree in Computer Science, IT, or a related field.
- 8–10 years of hands-on experience in VAPT.
- CEH certification is required.
- OSCP or CREST certifications are a plus.
- Experience working in an MSSP (Managed Security Services Provider) environment is preferred.
- Strong understanding of Windows, Unix/Linux systems, firewalls, VPNs, and security infrastructure.
- Expertise in tools like NMap, Metasploit, Kali Linux, Nessus, NetCat, HPing, Qualys, and RetinaCS.
- Strong understanding of CVE databases, exploit development, and countermeasures.
- Familiarity with scripting languages such as C++, C#, Perl, HTML, Shell, etc.
- Knowledge of firewalls, IPS, DNS security, VLAN, web filtering, and VPNs.
- Experience with cloud security assessment across major platforms (AWS, Azure, GCP).
- Strong communication, presentation, and documentation skills.
- Ability to work independently and lead security assessments across client environments.
- Willingness to travel overseas for project deployments.
- Exposure to RFP response preparation, solution architecture, and client-facing presentations.
Benefits
Salary: Up to INR 18 LPA
This advertiser has chosen not to accept applicants from your region.
3
Ethical Hacking
Chennai, Tamil Nadu
Anicalls (Pty) Ltd
Posted today
Job Viewed
Job Description
• Ability to demonstrate manual web application testing experience
• Experience with web application vulnerability scanning tools (e.g., IBM AppScan, HP Web Inspect, Acunetix, NTO Spider, Burpsuite Pro, etc.)
• Experience with vulnerability assessment tools and penetration testing techniques (e.g., web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI, etc.)
• Experience of penetration testing on mobile platforms such as iOS, Android, Windows, and RIM.
• Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
• Expert-level experience and very details technical Knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; standard communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
• Demonstrated ability to learn and apply critical thinking to a variety of situations
• Mobile programming abilities such as Xcode, Objective-C
• One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
• Strong scripting skills (e.g., Python, Perl, Shell script, JavaScript
• Experience as a developer
• Knowledge of a Structured Query Language
• Experience with web application vulnerability scanning tools (e.g., IBM AppScan, HP Web Inspect, Acunetix, NTO Spider, Burpsuite Pro, etc.)
• Experience with vulnerability assessment tools and penetration testing techniques (e.g., web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI, etc.)
• Experience of penetration testing on mobile platforms such as iOS, Android, Windows, and RIM.
• Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
• Expert-level experience and very details technical Knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; standard communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
• Demonstrated ability to learn and apply critical thinking to a variety of situations
• Mobile programming abilities such as Xcode, Objective-C
• One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
• Strong scripting skills (e.g., Python, Perl, Shell script, JavaScript
• Experience as a developer
• Knowledge of a Structured Query Language
This advertiser has chosen not to accept applicants from your region.
4
Ethical Hacking developer
Bengaluru, Karnataka
Anicalls (Pty) Ltd
Posted today
Job Viewed
Job Description
• Ability to demonstrate manual web application testing experience
• Experience with web application vulnerability scanning tools (e.g., IBM AppScan, HP Web Inspect, Acunetix, NTO Spider, Burpsuite Pro, etc.)
• Experience with vulnerability assessment tools and penetration testing techniques (e.g., web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI, etc.)
• Experience of penetration testing on mobile platforms such as iOS, Android, Windows, and RIM.
• Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
• Expert-level experience and very details technical Knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; standard communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
• Demonstrated ability to learn and apply critical thinking to a variety of situations
• Mobile programming abilities such as Xcode, Objective-C
• One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
• Strong scripting skills (e.g., Python, Perl, Shell script, JavaScript
• Experience as a developer
• Knowledge of a Structured Query Language
• Experience with web application vulnerability scanning tools (e.g., IBM AppScan, HP Web Inspect, Acunetix, NTO Spider, Burpsuite Pro, etc.)
• Experience with vulnerability assessment tools and penetration testing techniques (e.g., web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI, etc.)
• Experience of penetration testing on mobile platforms such as iOS, Android, Windows, and RIM.
• Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
• Expert-level experience and very details technical Knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; standard communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
• Demonstrated ability to learn and apply critical thinking to a variety of situations
• Mobile programming abilities such as Xcode, Objective-C
• One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
• Strong scripting skills (e.g., Python, Perl, Shell script, JavaScript
• Experience as a developer
• Knowledge of a Structured Query Language
This advertiser has chosen not to accept applicants from your region.
5
Ethical Hacking Analyst
Noida, Uttar Pradesh
Anicalls (Pty) Ltd
Posted today
Job Viewed
Job Description
• Ability to demonstrate manual web application testing experience
• Experience with web application vulnerability scanning tools (e.g., IBM AppScan, HP Web Inspect, Acunetix, NTO Spider, Burpsuite Pro, etc.)
• Experience with vulnerability assessment tools and penetration testing techniques (e.g., web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI, etc.)
• Experience of penetration testing on mobile platforms such as iOS, Android, Windows, and RIM.
• Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
• Expert-level experience and very details technical Knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; standard communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
• Demonstrated ability to learn and apply critical thinking to a variety of situations
• Mobile programming abilities such as Xcode, Objective-C
• One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
• Strong scripting skills (e.g., Python, Perl, Shell script, JavaScript
• Experience as a developer
• Knowledge of a Structured Query Language
• Experience with web application vulnerability scanning tools (e.g., IBM AppScan, HP Web Inspect, Acunetix, NTO Spider, Burpsuite Pro, etc.)
• Experience with vulnerability assessment tools and penetration testing techniques (e.g., web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI, etc.)
• Experience of penetration testing on mobile platforms such as iOS, Android, Windows, and RIM.
• Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
• Expert-level experience and very details technical Knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; standard communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
• Demonstrated ability to learn and apply critical thinking to a variety of situations
• Mobile programming abilities such as Xcode, Objective-C
• One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
• Strong scripting skills (e.g., Python, Perl, Shell script, JavaScript
• Experience as a developer
• Knowledge of a Structured Query Language
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Penetration testing roles Jobs in India !
6
Ethical Hacking Analyst
Hyderabad, Andhra Pradesh
Anicalls (Pty) Ltd
Posted today
Job Viewed
Job Description
• Ability to demonstrate manual web application testing experience
• Experience with web application vulnerability scanning tools (e.g., IBM AppScan, HP Web Inspect, Acunetix, NTO Spider, Burpsuite Pro, etc.)
• Experience with vulnerability assessment tools and penetration testing techniques (e.g., web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI, etc.)
• Experience of penetration testing on mobile platforms such as iOS, Android, Windows, and RIM.
• Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
• Expert-level experience and very details technical Knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; standard communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
• Demonstrated ability to learn and apply critical thinking to a variety of situations
• Mobile programming abilities such as Xcode, Objective-C
• One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
• Strong scripting skills (e.g., Python, Perl, Shell script, JavaScript
• Experience as a developer
• Knowledge of a Structured Query Language
• Experience with web application vulnerability scanning tools (e.g., IBM AppScan, HP Web Inspect, Acunetix, NTO Spider, Burpsuite Pro, etc.)
• Experience with vulnerability assessment tools and penetration testing techniques (e.g., web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI, etc.)
• Experience of penetration testing on mobile platforms such as iOS, Android, Windows, and RIM.
• Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
• Expert-level experience and very details technical Knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; standard communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
• Demonstrated ability to learn and apply critical thinking to a variety of situations
• Mobile programming abilities such as Xcode, Objective-C
• One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
• Strong scripting skills (e.g., Python, Perl, Shell script, JavaScript
• Experience as a developer
• Knowledge of a Structured Query Language
This advertiser has chosen not to accept applicants from your region.
7
Ethical Hacking Trainer
Pune, Maharashtra
IT Education Centre & Training
Posted 1 day ago
Job Viewed
Job Description
**We are seeking for Ethical hacking Trainer.**
**Designation - Ethical hacking Trainer.**
**Experience - 1 to 4 Years**
**CTC - As per company norms.**
**Location - Pune**
**Position - 1**
**Joining Date: 1 Week/15 Days**
**responsibilities include**:
- Developing and delivering learning content related to the topics of ethical hacking, computer network security, and computer forensics
- Designing, facilitating, and evaluating virtual learning experiences for students
- Assisting in the development of course materials
4 Keeping up to date with the latest developments and trends in ethical hacking and computer security
- Working with the team of experts to ensure that all students receive a high-quality experience Who can apply:
Skill(s) required - Computer Networking Ethical Hacking Linux MS-Office Python Web Application Security
***
**Contact on: / **
**Regards,**
**HR Team**
**Job Category**:Training**Job Type**:Full Time**Job Location**:Deccan pune
**Designation - Ethical hacking Trainer.**
**Experience - 1 to 4 Years**
**CTC - As per company norms.**
**Location - Pune**
**Position - 1**
**Joining Date: 1 Week/15 Days**
**responsibilities include**:
- Developing and delivering learning content related to the topics of ethical hacking, computer network security, and computer forensics
- Designing, facilitating, and evaluating virtual learning experiences for students
- Assisting in the development of course materials
4 Keeping up to date with the latest developments and trends in ethical hacking and computer security
- Working with the team of experts to ensure that all students receive a high-quality experience Who can apply:
Skill(s) required - Computer Networking Ethical Hacking Linux MS-Office Python Web Application Security
***
**Contact on: / **
**Regards,**
**HR Team**
**Job Category**:Training**Job Type**:Full Time**Job Location**:Deccan pune
This advertiser has chosen not to accept applicants from your region.
8
Security Testing
Hyderabad, Andhra Pradesh
Virtusa
Posted today
Job Viewed
Job Description
Security Testing - CREQ Description Minimum 8 to 10 yrs experience in Security testing
automation testing and manual Testing.
Executing manual and automated test cases. Reporting bugs and errors to development teams.
Responsible for designing test scenarios for software usability
Experience in Identify and Access Mgmt testing
Experience in Security testing ( penetration )
responsible for reviewing and implementing systematic test plans
Primary Location Hyderabad, Andhra Pradesh, India Job Type Experienced Primary Skills Qualys Years of Experience 7 Travel No
automation testing and manual Testing.
Executing manual and automated test cases. Reporting bugs and errors to development teams.
Responsible for designing test scenarios for software usability
Experience in Identify and Access Mgmt testing
Experience in Security testing ( penetration )
responsible for reviewing and implementing systematic test plans
Primary Location Hyderabad, Andhra Pradesh, India Job Type Experienced Primary Skills Qualys Years of Experience 7 Travel No
This advertiser has chosen not to accept applicants from your region.
9