127 Security Tester jobs in India

• Minimum 8+ years of hands-on experience in security testing across diverse environments.
• Strong expertise in DAST (Dynamic Application Security Testing) and SAST (Static Application Security Testing).
• Proficient in API Security testing and secure design validation.
• Skilled in Software Composition Analysis (SCA) to detect and remediate vulnerabilities.
• Experience in Network Security assessments and penetration testing.
• Knowledge of Mobile Application Security testing methodologies and tools.
• Added advantage: exposure to DevSecOps, Cloud Security, and Vulnerability Management.

Job Description Security testing consultant

Job Title: Application security testing consultant (Assistant Manager)

Job Summary

We are seeking an engineer with 3-5 yrs of experience and highly motivated senior security testing consultant to join our team in a dynamic industrial environment. The Application Security testing Engineer will be responsible for ensuring the security of our applications throughout the software development lifecycle. This role involves collaborating with development teams to integrate security best practices, conducting security assessments, and implementing measures to protect against threats and vulnerabilities. This role demands a blend of technical expertise, problem-solving skills, and knowledge of industry-specific challenges.

Key Responsibilities

• Conduct security assessments, penetration testing, and code reviews on applications to identify vulnerabilities.
• Collaborate with development teams to integrate security best practices into the software development lifecycle (SDLC).
• Design and implement security measures, such as encryption, authentication, and intrusion detection systems.
• Develop and maintain security-related documentation, including policies, procedures, and guidelines.
• Monitor application security alerts and respond to incidents to mitigate risks promptly.
• Stay updated with the latest security threats, trends, and technologies to ensure proactive defense strategies.
• Provide training and support to development teams on secure coding practices.
• Conduct risk assessments and threat modeling to anticipate potential security issues.
• Work with cross-functional teams to remediate identified security vulnerabilities.
• Participate in security audits and compliance activities to meet regulatory requirements.
• Evaluate and recommend security tools and technologies tailored to industry-specific needs.
• Manage contracts with security vendors and service providers.
• Work closely with engineering, production, and IT teams to integrate security into new projects and upgrades.
• Participate in strategic planning for long-term security infrastructure improvements.
• Provide input for disaster recovery (DR) and business continuity planning (BCP) strategies

Minimum Qualifications

Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related fields.

Professional Certifications (preferable):

• Certified Information Systems Security Professional (CISSP)
• Certified Ethical Hacker (CEH)
• CompTIA Security+
• Certified Information Security Manager (CISM)
• GIAC Certified Incident Handler (GCIH)

Experience:

• 3-5 years of experience as an Security Engineer or in a similar role., including 3 years in industrial environments such as steel, power, renewable energy, or cement.
• Strong understanding of application security principles and secure coding practices.

Technical Skills:

• Experience with security tools such as SAST, DAST, and vulnerability scanners.
• Familiarity with common security frameworks and standards (e.g., OWASP, NIST).
• Proficiency in at least one programming language (e.g., Java, C#, Python).
• Knowledge of encryption techniques, PKI, and secure authentication mechanisms.
• Familiarity with cloud security tools (e.g., AWS, Azure, GCP).

Soft Skills:

• Strong analytical and problem-solving abilities.
• Excellent communication and interpersonal skills.
• Ability to work collaboratively across teams and departments.
• Adaptability to evolving technology landscapes and security challenges.

Analyst - Application Security Tester - Deloitte Support Services India Private Limited

Are you energized by helping organizations protect their data and build client trust? Do you want to work in one of the world's largest holistic internal cybersecurity organizations? If you're interested in proactively preventing, detecting, and responding to cyber-attacks across a complex global footprint, then Deloitte Global could be the perfect place for you. We're looking for an analytical thinker passionate about cybersecurity to join our team.

Responsibilities

As part of the Global Cybersecurity team, responsibilities will be to work with customers to deliver technical assessments against a broad range of services, illustrative duties will include:

This role is responsible for providing automated application testing services as part of the shared services organization for member firms. Said responsibilities would include:

• Assisting in technical scoping of security testing activities
• Executing security testing:
• Static Application Security Testing
• Dynamic Application Security Testing
• Interactive Application Security Testing
• Software Composition Analysis
• VM Management – Infrastructure Activities
• DevOps – Issue Analysis and Configuration knowledge
• Conducting focused research when not deployed on an active project
• Providing consultative guidance to customers on findings identified in a clear and actionable fashion both in writing and verbally.
• Enhancing and updating testing methodologies, processes and standards documentation
• Maintaining proficiency of knowledge through ongoing training paths
• Analyzing and understanding complex architecture designs.
• Ability to effectively communicate what services and capabilities our group can facilitate to our clients.

About the Team

The Deloitte Global Cybersecurity function is responsible for enhancing data protection, standardizing and securing critical infrastructure, and gaining cyber visibility through security operations centers. The Cybersecurity organization delivers a comprehensive set of security services to Deloitte's global network of firms around the globe.

Location

Hyderabad, India

Qualification

• Education (degree): Bachelor's Degree or equivalent experience
• Skills/Abilities:
• Experience using common testing tools like Fortify Static Code Analyzer & Web Inspect, Contrast Assess and Scan, Burp, OWASP ZAP, Postman, Swagger, NMAP, SQLMap and others.
• Static Application Software Testing
• Dynamic Application Testing
• OWASP Application Security Top 10
• OWASP API Security Top 10
• OWASP Thick Client Top 10
• Familiarity with software security weakness and recent vulnerabilities
• Working knowledge of at least one scripting language (e.g., Python, Powershell)
• Familiarity with at least one software programming language and framework (e.g., C#, Java, JavaScript)
• Azure cloud and infrastructure
• Demonstrated experience working with diverse stakeholders, preferably on a global multi-national basis
• Ability to manage concurrent initiatives and use effective judgment in prioritization and time management
• Strong written and verbal communication skills

Preferred Education, Qualifications, and Experience Settings

• Certified Ethical Hacker (CEH)
• Offensive Certified Security Professional (OSCP)
• Any GIAC Certification (GSEC, GWAB, GPEN, GMOB, GCPN)

Benefits

At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you.

Deloitte's culture

Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte.

Our purpose

Deloitte's purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities.

Our people and culture

Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.

Professional development

At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India.

Benefits to help you thrive

At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you.

Recruiting tips

From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.

Requisition code:

Key Responsibilities:

• Assist in identifying and reporting security vulnerabilities in web & mobile applications.
• Support in penetration testing and simulate attacks to test system resilience.
• Help in performing vulnerability assessments and documenting findings.
• Work closely with developers to suggest fixes and improvements.
• Ensure data privacy and protection standards are being followed.
• Stay updated with the latest security practices, tools, and emerging threats.

Requirements:

• Currently pursuing or recently completed studies in Computer Science, Cybersecurity, IT, or related fields.
• Basic understanding of application security, OWASP Top 10, and common vulnerabilities.
• Familiarity with tools such as Burp Suite, Kali Linux, Metasploit, or similar (a plus).
• Strong analytical and problem-solving mindset.
• Interest in cybersecurity + AI-driven applications.
• Good documentation and communication skills.

What You'll Gain:

• Real-world experience securing a live AI-fashion platform.
• Exposure to penetration testing, vulnerability assessment, and secure development practices.
• Mentorship from experienced developers and security professionals.
• A chance to explore careers in cybersecurity and AI-tech.
• Opportunity for a full-time security role based on performance.

Job Type: Internship

Contract length: 3-6 months

Pay: ₹8, ₹45,021.19 per month

Work Location: Remote

About the Role:

We are seeking a curious and driven Security Tester Intern to join our cybersecurity team. As a Security Tester Intern, you will help identify vulnerabilities in our applications, systems, and networks by supporting penetration testing and other security assessment activities. This is an exciting opportunity to get hands-on experience in ethical hacking, vulnerability scanning, and secure development practices.

Key Responsibilities:

• Assist in performing security testing on web, mobile, and/or API applications
• Conduct vulnerability scans and support penetration testing efforts
• Help in identifying, documenting, and reporting security flaws and misconfigurations
• Work with development teams to verify security patches and mitigations
• Research new threats, attack vectors, and common vulnerabilities (e.g., OWASP Top 10)
• Assist in developing and executing security test cases
• Support internal audits and security assessments

Required Qualifications:

• Currently pursuing a degree in Computer Science, Information Security, or a related field
• Strong interest in cybersecurity, ethical hacking, or penetration testing
• Basic understanding of network and application security concepts
• Familiarity with Linux, command line, and scripting basics
• Awareness of common security vulnerabilities (e.g., SQLi, XSS, CSRF)
• Strong attention to detail and willingness to learn

Preferred Skills (Nice to Have):

• Exposure to tools like Burp Suite, OWASP ZAP, Nmap, Nikto, Metasploit, etc.
• Knowledge of OWASP Top 10 and basic threat modeling
• Hands-on experience in any CTFs, bug bounty platforms (e.g., HackerOne, Bugcrowd), or labs (e.g., Hack The Box, TryHackMe)
• Familiarity with any programming/scripting languages (e.g., Python, Bash, JavaScript)

What You Will Gain:

• Hands-on experience in real-world security testing and assessment
• Mentorship from experienced security professionals
• Exposure to secure development lifecycle (SDLC) and DevSecOps principles
• Opportunities to contribute to a company-wide security posture
• Certificate of Internship and potential opportunity for full-time role based on performance

Job Type: Internship

Work Location: Remote

Company Description

At Next Mantra Solution Private Limited, we are dedicated to empowering businesses through innovative IT services and strategic consulting. With a passion for technology and a commitment to excellence, we provide tailored solutions that drive growth, efficiency, and digital transformation. Our team of experts is committed to delivering cutting-edge technology solutions to help our clients achieve their business goals.

Role Description

This is a full-time on-site role for a Cyber Security VAPT Tester, located in Gurugram. The Cyber Security VAPT Tester will be responsible for conducting vulnerability assessments and penetration testing (VAPT), identifying security weaknesses, and recommending security improvements. The role includes preparing detailed reports, collaborating with development and IT teams to fix vulnerabilities, and staying up-to-date with the latest security threats and trends. Relevant Experience into Application Security Testing and Web Application Testing.

Experience - 1-4 Years

Qualifications

• Strong understanding of vulnerability assessment and penetration testing methodologies and tools such as Nessus, Metasploit, and Burp Suite
• Strong understanding on Application Security Testing and Web Application Testing
• Experience with various operating systems, particularly Windows and Linux
• Familiarity with network protocols and security technologies such as firewalls, intrusion detection/prevention systems, and VPNs
• Proficiency in scripting languages such as Python, Bash, or PowerShell
• Strong analytical and problem-solving skills
• Excellent written and verbal communication skills
• Bachelor's degree in Computer Science, Information Security, or a related field
• Consulting Background is good to have.
• Immediate Joiners Preferred.