6 Penetration Testing jobs in Bengaluru

Responsibilities What will you contribute? We are seeking an experienced Project Manager/coordinator to oversee our web, mobile and infrastructure penetration testing activities. The ideal candidate will manage projects by liaising with third-party penetration test providers and internal teams to ensure the security and integrity of our systems. As part of Finastra’s Threat & Vulnerability Management team, you’ll be directly responsible for administering and actively maturing our company’s Penetration Testing program. Your crucial role will involve preventing cyber-attacks and safeguarding the company and our clients from vulnerabilities. Responsibilities & Deliverables: Your deliverables will include, but are not limited to, the following: Penetration Testing Management: Coordinate and oversee advanced penetration testing activities, including network, web application, and mobile application testing. Serve as the primary point of contact between third-party penetration testers and internal teams. Facilitate communication and provide regular updates to stakeholders on the progress of penetration testing activities. Project Management: Plan, prioritize, and manage multiple penetration testing projects simultaneously, ensuring timely delivery of high-quality results within budget constraints. Collaborate with application teams and environment owners to schedule and execute testing. Defect Management: Record findings in a centralized repository for review, prioritization, and remediation tracking. Compliance and Reporting: Ensure compliance with industry standards, regulations, and best practices. Prepare detailed penetration testing reports with findings, analysis, and recommendations for internal stakeholders. Metric Reporting: Establish, track, and report penetration testing metrics periodically by product, application, and/or domain. Utilize Power BI and other reporting tools to create insightful reports on penetration testing outcomes and risk assessments. Vendor Management: Act as the primary contact and relationship manager for third-party penetration testing providers, ensuring successful execution and adherence to service level agreements (SLAs), contract negotiation, scope definition, and effort estimation. Continuous Improvement: Drive initiatives to enhance the effectiveness and efficiency of penetration testing processes, methodologies, and tools. Contribute to innovative solutions for emerging cybersecurity challenges. Technical Expertise: Stay informed about the latest cybersecurity threats, vulnerabilities, and attack techniques, applying this knowledge to improve penetration testing methodologies and tools. Required Experience: Minimum of five years of experience in cybersecurity, with a specific focus on penetration testing. Proven experience in project management, preferably in the field of information security. Intermediate knowledge of security principles and ITIL framework. Strong technical proficiency in areas such as network security, web application security, mobile security, and social engineering. Good understanding of Software Development Life Cycle (SDLC) best practices. Excellent verbal and written English communication skills, with the ability to effectively interact with technical, business, and other stakeholders at all levels of the organization. Superior analytical and problem-solving abilities, enabling assessment of complex security issues, prioritization of tasks, and development of practical solutions. Adaptability in tailoring conversations and presentations for different audiences, spanning technical, nontechnical, and executive leadership. Ability to manage multiple projects simultaneously and under tight deadlines Beneficial - Proficiency in Power BI and reporting skills. Demonstrated commitment to continuous learning and professional development in the field of cybersecurity. Education/Certifications Desired Bachelor's degree from an accredited college or university, or equivalent experience. A degree in Computer Science, Computer/Data Systems Management or a related field or discipline is preferred. Project Management Professional (PMP) certification is preferred.

• Ability to demonstrate manual web application testing experience
• Experience with web application vulnerability scanning tools (e.g., IBM AppScan, HP Web Inspect, Acunetix, NTO Spider, Burpsuite Pro, etc.)
• Experience with vulnerability assessment tools and penetration testing techniques (e.g., web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI, etc.)
• Experience of penetration testing on mobile platforms such as iOS, Android, Windows, and RIM.
• Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
• Expert-level experience and very details technical Knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; standard communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
• Demonstrated ability to learn and apply critical thinking to a variety of situations
• Mobile programming abilities such as Xcode, Objective-C
• One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
• Strong scripting skills (e.g., Python, Perl, Shell script, JavaScript
• Experience as a developer
• Knowledge of a Structured Query Language

Do you love a career where you Experience , Grow & Contribute at  the same time, while earning at least 10% above the market? If so, we are excited to have bumped onto you.Learn how we are redefining the meaning of work, and be a part of the team raved by Clients, Job-seekers and Employees.Jobseeker Video Testimonials Employee Glassdoor ReviewsIf you are a  Application Security Testing - DAST + MPT  and looking for excitement, challenge and stability in your work, then you would be glad to come across this page.Role:  Application Security Testing - DAST + MPT Location: Hyderabad, Pune, and ChennaiExperience: 5-8 Years Responsibilities: Conduct security/vulnerability assessments and penetration testing for web, API, Thick Client, and mobile applications.Perform DAST scans using commercial and open-source tools.Configure scan policies for application risk and compliance standards.Work with various assessment, asset inventory, and reporting tools.Analyze false positives in tool-generated vulnerabilities.Conduct manual vulnerability assessments/penetration testing.Develop and implement application security policies and procedures.Identify and prioritize security vulnerabilities.Collaborate with application development and operations teams on remediation.Provide ad-hoc reporting and research support.Meet company and customer requirements promptly.Contribute to reporting for clients, partners, and internal teams.Maintain compliance with internal security and Deloitte policies.Requirements1.vulnerability assessment, penetration testing for web applications , web APIs  and the client application. 2.Should have capability for performing manual security assessments using Burpsuit, OWASP zap, etc., 3.Experience on multiple commercial tool to perform Dast like Appscan, web inspect , Accunitix .4.Should be able to analyze the results , and perform false positive analysis or vulnerability reported by the scanners. Certifications – Good to have - CEH , OSCP , CISSP( certified information systems security professional ) , OSWE ( Offensive security web expert ). Day to day activities:1.Candidate should involve in client applications, client sessions , client interactions and helping clients in fixing security gaps ( vulnerability ).2.who should be able to Monitor , report and verifying the tasks.3.Information gathering for application and perform security assessments & identifying vulnerabilities.4.Good communication skills.BenefitsVisit us at  Alignity Solutions is an Equal Opportunity Employer, M/F/V/D.CEO Message: Click HereClients Testimonial: Click Here

Test Engineer - Security Testing (IPv6, MPLS, IP protocol, and telecom lab setup/testing on routers/switches), EMC, Telecom, Radio, Safety protocols testing
Apply ( Location:Mumbai, India
+ Alternate LocationBangalore
+ Area of InterestSupply Chain
+ Job TypeProfessional
+ Technology Interest*None
+ Job Id1443864
**Meet the Team**
**Join Cisco's** **Corporate Compliance Team** **, where we drive** **regulatory compliance** **for all Cisco products across geographies. Our team partners with** **Supply Chain** **,** **Engineering** **, and** **Business Units (BUs)** **to build long-term, sustainable processes and roadmaps that enhance Cisco's** **Compliance** **and** **Security Posture** **.**
**We are committed to ensuring Cisco products meet** **global compliance requirements** **, achieve necessary** **regulatory approvals** **, and support Cisco's mission to maintain the highest** **standards of compliance and security** **.**
**Your Impact**
**As a** **Compliance Engineer** **with a focus on** **Cybersecurity** **, you will play a pivotal role in ensuring Cisco products comply with regulatory requirements and achieve necessary certifications. You will:**
+ **Collaborate with** **business units** **,** **local sales teams** **, and** **cross-functional teams** **to meet compliance requirements and obtain regulatory approvals.**
+ **Maintain up-to-date** **internal documentation** **and compliance databases.**
+ **Manage and organize all documentation related to** **product testing** **and certification.**
+ **Provide technical support for lab testing and resolve compliance-related issues.**
+ **Stay informed about global** **cybersecurity regulations** **and communicate updates to internal teams.**
+ **Support** **cybersecurity certification documentation** **for various APJC countries.**
+ **Conduct** **information security assessments** **across domains such as** **product security** **,** **network security** **, and** **application security** **.**
+ **Address inquiries related to Cisco products, regulations, and compliance.**
+ **Utilize Cisco product experience to** **troubleshoot and manage lab tests** **, particularly for telecom and security compliance, ensuring products pass tests and secure necessary approvals.**
**Key Responsibilities**
+ **Ensure Cisco products meet** **cybersecurity compliance standards** **and obtain necessary** **regulatory certifications** **.**
+ **Collaborate with cross-functional teams to align compliance efforts with Cisco's** **regulatory requirements** **.**
+ **Conduct** **telecom lab setups and testing** **for routers, switches, and other Cisco products.**
+ **Stay updated on** **country-specific security regulations** **and proactively communicate changes to internal teams.**
+ **Support the** **documentation and certification process** **for cybersecurity compliance in APJC countries.**
+ **Perform** **security assessments** **to identify and resolve gaps in product security, network security, and application security.**
+ **Troubleshoot and resolve issues related to** **product certification testing** **using Cisco equipment and technology.**
+ **Partner with internal stakeholders to improve** **processes** **and** **roadmaps** **for sustained compliance success.**
**Minimum Qualifications**
**You bring a strong foundation in** **cybersecurity protocols** **,** **compliance frameworks** **, and** **Cisco technologies** **, coupled with experience in regulatory environments.**
+ **Education:**
+ **Bachelor's or Master's degree in** **Electrical Engineering** **or** **Computer Science** **with skills in** **computer programming** **and** **cybersecurity protocols** **.**
+ **Experience:**
+ **Minimum of** **6 years** **of related experience in** **cybersecurity compliance** **.**
+ **Technical Expertise:**
+ **Knowledge of** **compliance frameworks** **such as** **SOC2** **,** **ISO27001** **, and** **Common Criteria** **.**
+ **Hands-on experience with** **Cisco technology and equipment** **; certifications such as** **CCNA** **,** **CCNP** **, or** **CCIE** **are preferred.**
+ **Familiarity with common** **IT systems** **,** **IPv6** **,** **MPLS** **,** **IP protocols** **, and telecom lab setup/testing for routers and switches.**
**Preferred Qualifications**
**You thrive in dynamic environments and excel at solving complex technical challenges while collaborating across teams.**
+ **Communication Skills:**
+ **Strong verbal and written communication skills to connect with technical and non-technical stakeholders.**
+ **Team Collaboration:**
+ **Team player with excellent** **organizational** **and** **planning skills** **.**
+ **Problem-Solving:**
+ **Analytical thinker with the ability to tackle complex problems and focus on solutions.**
+ **Project Management:**
+ **Proven experience managing projects and driving timelines to completion.**
**Responsibilities in Detail**
+ **Compliance Management:**
+ **Ensure Cisco products meet** **global cybersecurity compliance frameworks** **and regulations.**
+ **Support** **documentation** **and maintain up-to-date internal compliance databases.**
+ **Lab Testing and Troubleshooting:**
+ **Conduct lab tests on Cisco routers, switches, and other products, resolving compliance-related issues.**
+ **Utilize lab setups to ensure** **telecom** **and** **security compliance** **for regulatory approvals.**
+ **Cybersecurity Assessments:**
+ **Perform information security assessments covering** **product security** **,** **network security** **, and** **application security domains** **.**
+ **Stay informed about evolving** **cybersecurity regulations** **and proactively communicate updates to the team.**
+ **Documentation and Certification:**
+ **Support** **APJC cybersecurity certification documentation** **and processes.**
+ **Manage all documentation related to** **product certification testing** **.**
+ **Stakeholder Collaboration:**
+ **Collaborate with business units, sales, and cross-functional teams to ensure compliance efforts align with Cisco's** **regulatory goals** **.**
**Who You'll Work With**
**You will collaborate with:**
+ **Internal Teams:** **Partner with** **Supply Chain** **,** **Engineering** **,** **Business Units** **, and** **Security Teams** **to drive compliance initiatives.**
+ **Cross-Functional Stakeholders:** **Work with global sales teams and local regulatory teams to secure product certifications.**
+ **Lab and Testing Teams:** **Manage lab setups, testing processes, and ensure successful regulatory approvals.**
**At Cisco, we're revolutionizing how data and infrastructure connect and protect organizations in the AI era - and beyond. We've been innovating fearlessly for 40 years to create solutions that power how humans and technology work together across the physical and digital worlds. These solutions provide customers with unparalleled security, visibility, and insights across the entire digital footprint. Simply put - we power the future.**
**Fueled by the depth and breadth of our technology, we experiment and create meaningful solutions. Add to that our worldwide network of doers and experts, and you'll see that the opportunities to grow and build are limitless. We work as a team, collaborating with empathy to make really big things happen on a global scale. Because our solutions are everywhere, our impact is everywhere.**
**We are Cisco, and our power starts with you.**
**Message to applicants applying to work in the U.S. and/or Canada:**
When available, the salary range posted for this position reflects the projected hiring range for new hire, full-time salaries in U.S. and/or Canada locations, not including equity or benefits. For non-sales roles the hiring ranges reflect base salary only; employees are also eligible to receive annual bonuses. Hiring ranges for sales positions include base and incentive compensation target. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications, or training. Applicants may not be eligible for the full salary range based on their U.S. or Canada hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process.
U.S. employees haveaccess ( to quality medical, dental and vision insurance, a 401(k) plan with a Cisco matching contribution, short and long-term disability coverage, basic life insurance and numerous wellbeing offerings.
Employees receive up to twelve paid holidays per calendar year, which includes one floating holiday (for non-exempt employees), plus a day off for their birthday. Non-Exempt new hires accrue up to 16 days of vacation time off each year, at a rate of 4.92 hours per pay period. Exempt new hires participate in Cisco's flexible Vacation Time Off policy, which does not place a defined limit on how much vacation time eligible employees may use, but is subject to availability and some business limitations. All new hires are eligible for Sick Time Off subject to Cisco's Sick Time Off Policy and will have eighty (80) hours of sick time off provided on their hire date and on January 1st of each year thereafter. Up to 80 hours of unused sick time will be carried forward from one calendar year to the next such that the maximum number of sick time hours an employee may have available is 160 hours. Employees in Illinois have a unique time off program designed specifically with local requirements in mind. All employees also have access to paid time away to deal with critical or emergency issues. We offer additional paid time to volunteer and give back to the community.
Employees on sales plans earn performance-based incentive pay on top of their base salary, which is split between quota and non-quota components. For quota-based incentive pay, Cisco typically pays as follows:
.75% of incentive target for each 1% of revenue attainment up to 50% of quota;
1.5% of incentive target for each 1% of attainment between 50% and 75%;
1% of incentive target for each 1% of attainment between 75% and 100%; and once performance exceeds 100% attainment, incentive rates are at or above 1% for each 1% of attainment with no cap on incentive compensation.
For non-quota-based sales performance elements such as strategic sales objectives, Cisco may pay up to 125% of target. Cisco sales plans do not have a minimum threshold of performance for sales incentive compensation to be paid.
Cisco is an Affirmative Action and Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.
Cisco will consider for employment, on a case by case basis, qualified applicants with arrest and conviction records.

Req ID Come Join Our Passionate Team! At Barracuda, we make the world a safer place. We believe every business deserves access to cloud-enabled, enterprise-grade security solutions that are easy to buy, deploy, and use. We protect email, networks, data and applications with innovative solutions that grow and adapt with our customers’ journey. More than 200,000 organizations worldwide trust Barracuda to protect them — in ways they may not even know they are at risk — so they can focus on taking their business to the next level. We know a diverse workforce adds to our collective value and strength as an organization.Barracuda Networks is proud to be an employer that complies with all applicable national, state and local laws pertaining to nondiscrimination and equal opportunity regardless of race, gender, religion, sex, sexual orientation, national origin, or disability.Envision yourself at Barracuda Our Web Application Security team is at the forefront of protecting our customers’ applications, whether their resources reside in the cloud, data centers, or endpoint devices. We are a passionate team of engineers building the next generation of security solutions to combat threats such as malware, advanced/GenAI bots, ransomware, hackers and zero-day attacks. We are seeking a highly skilled and passionate Software Development Engineer in Test (SDET), with experience in networking, cloud and application security to join our cross-functional Agile team.As a Software Development Engineer in Test (SDET), you will have the opportunity to work on Saas, appliance-based, cloud-based and container-based, web application firewall products. You will collaborate closely with product managers and developers to design, develop, test, automate and deliver innovative features in a continuous delivery model. Tech Stack: 

Good Understanding with networking and application fundamentals, including HTTP/HTTPS, TCP/IP stack, and OWASP Top 10 attacks. Demonstrates a strong motivation to deepen this knowledge and engage in independent exploration for continuous learning.

Strong skills in programming languages such as Python, Perl

Experience with automation testing frameworks (., Selenium, TestNG)

Understanding of CI/CD tools (., Jenkins, Git).

Familiarity with security testing tools (., OWASP ZAP, Burp Suite).

Familiarity with offensive OS such as Kali and Blackarch Linux will be an advantage

Experience working in Azure/AWS will be an advantage.

What You’ll Be Working On:

Create and maintain automated test frameworks and test cases specifically tailored for application security testing, ensuring comprehensive coverage of security vulnerabilities.

Integrate automated security tests into Continuous Integration/Continuous Deployment (CI/CD) pipelines to facilitate rapid feedback on code changes.

Work closely with developers, product managers, and other stakeholders to understand application requirements and translate them into effective test cases.

Log, manage, and track security-related issues using bug tracking tools. Provide detailed reports on findings and suggest remediation strategies.

Maintain thorough documentation of testing processes, test cases, and results to ensure transparency and knowledge sharing within the team.

What You Bring to the Role: 

Higher technical school graduate with a focus on computer science, or a bachelor’s degree in computer science, Information Technology, or a related field.

2+ years of experience in software quality assurance, with a focus on application security.

Experience with automated testing frameworks and tools (., Selenium, etc).

Basic understanding of security principles, practices, and tools (., OWASP, etc)

Familiarity with Docker or virtualization solutions is a plus. 

Excellent analytical and problem-solving skills.

Strong communication and collaboration skills.

What you’ll get from us: A team where you can voice your opinion, make an impact, and where you and your experience are valued. Internal mobility – there are opportunities for cross training and the ability to attain your next career step within Barracuda. In addition, you will receive equity, in the form of non-qualifying options.#LI-hybrid