42 Security Assessments jobs in India
Pentester - Vulnerability Assessment & Penetration Testing (VAPT)
Posted today
Job Viewed
Job Description
We are hiring a hands-on Penetration Tester to lead and execute end-to-end security assessments across Web, Infrastructure, and Cloud environments. As the technical backbone of our lean and growing VAPT practice, you’ll work closely with the Security Lead and directly engage with clients to deliver meaningful, high-impact security outcomes.
Key Responsibilities:
- Perform manual and automated penetration testing across:
- Web Applications (based on OWASP Top 10)
- Infrastructure (external/internal IPs, firewall review, patch audits)
- Cloud Environments (basic Azure/AWS – IAM, Storage, Networking)
- Identify, exploit, and report on vulnerabilities such as SSRF, RCE, IDOR, LFI, and S3 bucket exposures
- Use tools such as Burp Suite , Nmap , SQLMap , Nikto , Nessus/OpenVAS
- Write high-quality, detailed technical reports with:
- Screenshots for PoCs
- Remediation guidance
- Risk severity scoring (preferably CVSSv3 )
- Collaborate with clients to explain findings and provide actionable recommendations
- Contribute to toolchain improvements and lightweight automation (Python/Bash preferred)
Requirements
- 3–6+ years of hands-on experience in at least 2 of the following areas :
- Web Application Penetration Testing (OWASP Top 10)
- Infrastructure VAPT (internal/external, firewall, patch validation)
- Basic Cloud VAPT (AWS or Azure: IAM, Storage, Networking)
- Proficiency in:
- Manual testing techniques , fuzzing, and exploitation
- Burp Suite (Community or Pro)
- Tools like Nmap, SQLMap, Nikto, Nessus/OpenVAS
- Strong understanding of common vulnerabilities and exploitation techniques
Preferred Certifications
- CEH , eJPT , OSCP (or strong portfolio/proof of hands-on skill)
- AZ-500 or AWS Security Specialty (for cloud security exposure)
Good to Have
- Familiarity with scripting for automation (Python, Bash)
- Exposure to CVSSv3 for vulnerability scoring
- Experience with Dradis , Excel-based reporting , or similar tools
Senior Consultant - VAPT (Vulnerability Assessment & Penetration Testing)
Posted today
Job Viewed
Job Description
Apt Resources is hiring for our client, a leading cybersecurity services firm, seeking an experienced Senior Consultant – VAPT to join their expert team. The ideal candidate will have deep expertise in infrastructure and application security assessments, penetration testing, and a solid understanding of modern security threats and countermeasures.
Key Responsibilities: Infrastructure VA/PT:- Conduct black-box and grey-box vulnerability assessments and penetration tests on system/network/cloud environments.
- Map network infrastructure, discover ports/services, and audit OS, network, and security configurations.
- Use tools like NMap, Nessus, Metasploit, Kali Linux for exploiting vulnerabilities.
- Stay current with CVEs and threat intelligence relevant to supported technologies.
- Prepare and present detailed findings and mitigation plans to clients.
- Deliver cloud infrastructure security assessments and configuration audits.
- Create and deliver comprehensive, client-specific technical reports.
- Perform vulnerability assessments of Web, Mobile, and Thick-client applications based on OWASP standards.
- Combine automated scanning with manual testing techniques to detect flaws.
- Conduct phishing and spear-phishing simulations to assess end-user security awareness.
Requirements
Qualifications:- Bachelor's degree in Computer Science, IT, or a related field.
- 8–10 years of hands-on experience in VAPT.
- CEH certification is required.
- OSCP or CREST certifications are a plus.
- Experience working in an MSSP (Managed Security Services Provider) environment is preferred.
- Strong understanding of Windows, Unix/Linux systems, firewalls, VPNs, and security infrastructure.
- Expertise in tools like NMap, Metasploit, Kali Linux, Nessus, NetCat, HPing, Qualys, and RetinaCS.
- Strong understanding of CVE databases, exploit development, and countermeasures.
- Familiarity with scripting languages such as C++, C#, Perl, HTML, Shell, etc.
- Knowledge of firewalls, IPS, DNS security, VLAN, web filtering, and VPNs.
- Experience with cloud security assessment across major platforms (AWS, Azure, GCP).
- Strong communication, presentation, and documentation skills.
- Ability to work independently and lead security assessments across client environments.
- Willingness to travel overseas for project deployments.
- Exposure to RFP response preparation, solution architecture, and client-facing presentations.
Benefits
Salary: Up to INR 18 LPA
Vulnerability Assessment Penetration Testing 4 to 6
Posted today
Job Viewed
Job Description
- Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
- Analyze scan reports and suggest remediation / mitigation plan
- Providing rich client specific reports
- Demonstration of proof of concepts for exploits, manual penetration testing
- Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
- Security configuration review of database /servers / firewalls / switches / routers, etc
- Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
**Primary Skills**:
**Secondary Skills**:
- Certified with any technology such as CEH, CISSP, etc
Vulnerability Assessment Penetration Testing 4 to 6
Posted today
Job Viewed
Job Description
- Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
- Analyze scan reports and suggest remediation / mitigation plan
- Providing rich client specific reports
- Demonstration of proof of concepts for exploits, manual penetration testing
- Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
- Security configuration review of database /servers / firewalls / switches / routers, etc
- Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
**Primary Skills**:
**Secondary Skills**:
- Certified with any technology such as CEH, CISSP, etc
Cybersecurity Penetration Testing
Posted today
Job Viewed
Job Description
Automotive Cybersecurity Penetration Test Engineers & Leads
Cybersecurity Skills
o Good understanding of ASPICE - SWE.4, SWE.5, SWE.6, SYS.4, SYS.5
o Strong understanding of cybersecurity testing of automotive ECUs
o Experience in developing test scenarios and understanding of use cases for features like secure boot, secure diagnostics, secure debug, PKI infrastructure, HSM, key manager, ECU secure modes, Firewall, Secure on-board communication etc.
o Good work experience with UDS protocol
o Experience in creating test setup, test plans, test cases, procedures, script, test execution and reporting, and analysis of test reports
o Experience with cybersecurity test automation, fuzz testing, penetration testing
o Understanding of cybersecurity lifecycle and standards ( ISO 21434 , UNECE WP.29, GM/T, NIST)
Desired Skills
o Good understanding of OEM cybersecurity end to end process and eco system, tools and methods.
o Good understanding of automotive product development lifecycle
o Strong experience in automotive embedded system validation
o Experience in testing various interfaces like CAN/CAN FD, Ethernet, Flexray, BT, Wi-Fi, GPS JTAG, UART, SPI etc.
o Good understanding of RTOS, QNX, Linux, Android, various platform softwares and testing their security features
o Good experience in CAPL Scripting, python scripting, XML etc.
o ISTQB certification
o Vector VT / dSPACE test systems
o Vector CANoe
o Functional Validation of Body, Chassis, Powertrain, Infotainment, Telematics
o vTESTstudio / CAPL / Python
Cybersecurity Penetration Testing
Posted today
Job Viewed
Job Description
Automotive Cybersecurity Penetration Test Engineers & Leads
Cybersecurity Skills
o Good understanding of ASPICE - SWE.4, SWE.5, SWE.6, SYS.4, SYS.5
o Strong understanding of cybersecurity testing of automotive ECUs
o Experience in developing test scenarios and understanding of use cases for features like secure boot, secure diagnostics, secure debug, PKI infrastructure, HSM, key manager, ECU secure modes, Firewall, Secure on-board communication etc.
o Good work experience with UDS protocol
o Experience in creating test setup, test plans, test cases, procedures, script, test execution and reporting, and analysis of test reports
o Experience with cybersecurity test automation, fuzz testing, penetration testing
o Understanding of cybersecurity lifecycle and standards ( ISO 21434 , UNECE WP.29, GM/T, NIST)
Desired Skills
o Good understanding of OEM cybersecurity end to end process and eco system, tools and methods.
o Good understanding of automotive product development lifecycle
o Strong experience in automotive embedded system validation
o Experience in testing various interfaces like CAN/CAN FD, Ethernet, Flexray, BT, Wi-Fi, GPS JTAG, UART, SPI etc.
o Good understanding of RTOS, QNX, Linux, Android, various platform softwares and testing their security features
o Good experience in CAPL Scripting, python scripting, XML etc.
o ISTQB certification
o Vector VT / dSPACE test systems
o Vector CANoe
o Functional Validation of Body, Chassis, Powertrain, Infotainment, Telematics
o vTESTstudio / CAPL / Python
Lead - Penetration Testing
Posted today
Job Viewed
Job Description
• Data Security
• Infrastructure Operations
• Network Edge Protection
• Vulnerability Management.
• Secure Software Management
Be The First To Know
About the latest Security assessments Jobs in India !
Senior Penetration Testing
Posted today
Job Viewed
Job Description
Job Title: Senior Penetration Testing
Experience:3-7 Years
NoticePeriod: Immediate to 15 days
Location: Bangalore
JD:
·Lead engagements from kickoff with productowners through scoping engagements, penetration testing and reporting whileadhering to the agreed scope and deadlines.
·Minimum 3+ years of experience in productpenetration testing.
·3+ years of experience in web, mobile (BothAndroid & iOS) and thick client penetration testing domains.
·Perform exploit and vulnerability research on products.
·Knowledge of TCP/IP, OSI Layer, IPv4 & IPv6,Network Protocols and Wireless Communication skills
·preferred.
·Knowledge of at least one scripting languagesuch as python, shell script, ruby, javascript etc.
·Research fuzz testing tools and conductpenetration test on a variety of products via communication interfaces such asModbus, Wi-Fi, Bluetooth, and others.
·Ability to develop detailed PoCs, train productteam and promote security awareness.
·Stay up to date on the latest exploits andsecurity trends.
Cybersecurity Penetration Testing
Posted today
Job Viewed
Job Description
Automotive Cybersecurity Penetration Test Engineers & Leads
Cybersecurity Skills
o Good understanding of ASPICE - SWE.4, SWE.5, SWE.6, SYS.4, SYS.5
o Strong understanding of cybersecurity testing of automotive ECUs
o Experience in developing test scenarios and understanding of use cases for features like secure boot, secure diagnostics, secure debug, PKI infrastructure, HSM, key manager, ECU secure modes, Firewall, Secure on-board communication etc.
o Good work experience with UDS protocol
o Experience in creating test setup, test plans, test cases, procedures, script, test execution and reporting, and analysis of test reports
o Experience with cybersecurity test automation, fuzz testing, penetration testing
o Understanding of cybersecurity lifecycle and standards ( ISO 21434 , UNECE WP.29, GM/T, NIST)
Desired Skills
o Good understanding of OEM cybersecurity end to end process and eco system, tools and methods.
o Good understanding of automotive product development lifecycle
o Strong experience in automotive embedded system validation
o Experience in testing various interfaces like CAN/CAN FD, Ethernet, Flexray, BT, Wi-Fi, GPS JTAG, UART, SPI etc.
o Good understanding of RTOS, QNX, Linux, Android, various platform softwares and testing their security features
o Good experience in CAPL Scripting, python scripting, XML etc.
o ISTQB certification
o Vector VT / dSPACE test systems
o Vector CANoe
o Functional Validation of Body, Chassis, Powertrain, Infotainment, Telematics
o vTESTstudio / CAPL / Python
Junior Penetration Testing Engineer
Posted 14 days ago
Job Viewed
Job Description
At Amgen, if you feel like you're part of something bigger, it's because you are. Our shared mission-to serve patients living with serious illnesses-drives all that we do.
Since 1980, we've helped pioneer the world of biotech in our fight against the world's toughest diseases. With our focus on four therapeutic areas -Oncology, Inflammation, General Medicine, and Rare Disease- we reach millions of patients each year. As a member of the Amgen team, you'll help make a lasting impact on the lives of patients as we research, manufacture, and deliver innovative medicines to help people live longer, fuller happier lives.
Our award-winning culture is collaborative, innovative, and science based. If you have a passion for challenges and the opportunities that lay within them, you'll thrive as part of the Amgen team. Join us and transform the lives of patients while transforming your career.
Junior Penetration Testing Engineer
**What you will do**
Let's do this. Let's change the world. In this vital role has a strong focus on ensuring the organization's infrastructure, applications, and systems are secure from external and internal threats. This role is responsible for conducting authorized security tests on IT infrastructure to evaluate the strength of its systems against potential cyberattacks. A variety of automated tools and manual techniques are leveraged to simulate real-world attacks. The penetration tester then works with the organization to prioritize, remediate and report on identified issues, strengthening the overall security posture.
**Roles & Responsibilities:**
+ Assist in penetration testing and security assessments under the supervision of senior engineers.
+ Document findings, providing clear and actionable remediation recommendations.
+ Identify and report vulnerabilities in applications, networks, cloud environments, and infrastructure.
+ Perform hands-on exploitation techniques to validate security weaknesses.
+ Use automated security tools (e.g., Burp Suite, OWASP ZAP, Metasploit, Nmap) and manual testing techniques to identify vulnerabilities.
+ Research emerging cybersecurity threats and contribute to the improvement of penetration testing methodologies.
+ Collaborate with development and security teams to implement secure coding practices and security best practices.
+ Participate in adversarial simulations, red team and purple team exercises as part of security assessments.
+ Support security compliance efforts aligned with industry frameworks (e.g., NIST, ISO 27001, PCI-DSS).
+ Continuously learn and improve technical skills in ethical hacking, scripting, and exploit development.
**What we expect of you**
We are all different, yet we all use our unique contributions to serve patients.
Master's degree and 1 to 3 years of experience in Cybersecurity or information security operations OR
Bachelor's degree and 3 to 5 years of experience in Cybersecurity or information security operations OR
Diploma and 7 to 9 years of experience in Cybersecurity or information security operations
**Must-Have Skills:**
+ Basic knowledge of penetration testing methodologies (e.g., PTES, OWASP Testing Guide).
+ Understanding of network application security, application security, and cloud security.
+ Familiarity with OWASP Top 10, SANS Top 25, and common attack techniques.
+ Experience using security tools such as Burp Suite, Nmap, OWASP ZAP, and Metasploit.
+ Basic proficiency in scripting and automation (e.g., Python, Bash, PowerShell).
**Preferred Qualifications:**
**Good-to-Have Skills:**
+ Experience with **threat intelligence and adversary simulation** .
+ Basic knowledge of **secure coding practices** and defensive security measures.
+ Interest in **red teaming, social engineering, and cloud security testing** .
+ Preferred: eJPT (Junior Penetration Tester)
**Soft Skills:**
+ Curiosity & Continuous Learning - Passion for cybersecurity research and ethical hacking.
+ Analytical Thinking - Ability to identify patterns and security weaknesses.
+ Communication Skills - Ability to document findings and present them effectively.
+ Collaboration & Teamwork - Works well in a team-oriented environment, learning from senior testers.
+ Attention to Detail - Precision in identifying vulnerabilities and reporting them clearly.
+ Problem-Solving Mindset - Ability to analyze and troubleshoot security risks effectively.
**What you can expect of us**
As we work to develop treatments that take care of others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, we'll support your journey every step of the way.
In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards.
**Apply now and make a lasting impact with the Amgen team.**
**careers.amgen.com**
As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other and live the Amgen values to continue advancing science to serve patients. Together, we compete in the fight against serious disease.
Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or any other basis protected by applicable law.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.