646 Security Testing jobs in Bengaluru

Overview
The Security Testing teams mission is to partner with Atlassian internal teams globally to provide innovative and holistic security testing to secure Atlassian products, platforms and customers. This role supports Atlassian's security team, Engineers and Customers by performing high quality penetration testing on our software, platforms and services.

This role supports Atlassian's security team, Engineers and Customers by providing world class technical assurance of our software, platforms and services through high quality manual penetration testing and code review.

Working at Atlassian
Atlassians can choose where they work – whether in an office, from home, or a combination of the two. That way, Atlassians have more control over supporting their family, personal goals, and other priorities. We can hire people in any country where we have a legal entity. Interviews and onboarding are conducted virtually, a part of being a distributed-first company.

Responsibilities
You will support others in technically validating the state of Atlassian's technical security controls, working closely with both our security and engineering teams. You enjoy vulnerability hunting and get excited when you find vulnerabilities that typical automated toolsets can't. You must have a strong ability to work with colleagues to understand our products and then come up with ways to strengthen security.

Since we work closely with our product engineering teams, the ability to read and understand code is very important. Our products are built using a number of different languages but Java, Go, and Python are the most common.

Qualifications
On your first day, we'll expect you to have:

• 3+ years working in a penetration testing/appsec/manual code review role
• Strong understanding of web application security
• Experience in cloud security architecture and infrastructure
• Experience coding in Java, Python, or Go, and at least one scripting language
• An ability to reason about security decisions
• Experience leading projects from start to finish and mentoring other security practitioners
• Strong collaboration and communication skills when working with closely with deeply technical development and infrastructure teams

It's Great, But Not Required, If You Have

• Submitted bug bounty reports to third party companies
• Published contributions to the security community
• Certifications: OSCP, OSCE, OSWE, CREST CRT, GPEN
• CVE's to your name
• Presentation experience at industry events
• Developed security tools
• Experience working with compliance, privacy, IT, networking or related functions

Benefits & Perks
Atlassian offers a wide range of perks and benefits designed to support you, your family and to help you engage with your local community. Our offerings include health and wellbeing resources, paid volunteer days, and so much more. To learn more, visit

.
About Atlassian
At Atlassian, we're motivated by a common goal: to unleash the potential of every team. Our software products help teams all over the planet and our solutions are designed for all types of work. Team collaboration through our tools makes what may be impossible alone, possible together.

We believe that the unique contributions of all Atlassians create our success. To ensure that our products and culture continue to incorporate everyone's perspectives and experience, we never discriminate based on race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. All your information will be kept confidential according to EEO guidelines.

To provide you the best experience, we can support with accommodations or adjustments at any stage of the recruitment process. Simply inform our Recruitment team during your conversation with them.

To learn more about our culture and hiring process, visit

.

Hi Folks,

We're Hiring for the leading Manufacturing Company of Electrical Connection and Protection solutions'.

About the Company

We’re looking for people who put their innovation work to advance our success – and their own. Join an organization that ensures a more secure world through connecting and protecting our customers with inventive electrical solutions.

Experience Required- 4+ years (less experience not considered)

OSCP/OSEP CERTIFICATION REQUIRED MANDATORY. (PLS DON'T APPLY IF YOU DON'T HAVE)

About the Role

WHAT YOU WILL EXPERIENCE IN THIS POSITION:

Responsibilities

• Conduct penetration testing of host/cloud-based applications, perform network security assessments, software/firmware analysis scans, evaluate and prioritize vulnerabilities using CVSS scoring, and document findings using organization-specific reporting tools.
• Research network-related protocols for network-connected products, including Industrial Control Systems (ICS), and perform related security assessments.
• Responsible for supporting nVent’s product cybersecurity verification testing program which is aligned to the ISA/IEC 62443 4-1 Security Development Lifecycle (SDL).
• Participate in continual efforts to automate as much testing as possible.
• Creating test report documentation to provide evidence of compliance to requirement.
• Support development and maintenance of a calendar of recurring cybersecurity audits, assessments, and activities;
  track to ensure owners complete activities on time.
• Maintaining list of tested products in appropriate nVent tools/databases.
• Work with product development teams to fill gaps found during verification testing.

Qualifications

• Bachelor’s degree or equivalent experience in related field.

Required Skills

• Ideally 5 years of experience in Penetration Testing, Application Security, QA, Network/IoT, or Offer Testing roles.
• Familiarity with test automation scripting tools or language.
• Familiarity with daily activity planning tools such as Atlassian Jira.
• Familiarity with either Agile or Kanban work environment.
• Ability to collaborate across key functions including IT and product engineering teams.
• Familiar with industry standards and best practices.
• Good verbal and written communication skills.
• Proven experience in Embedded Product Cybersecurity testing.
• Familiarity with ISA/IEC 62443 4-1 Security Development Lifecycle (SDL) requirements.
• Familiarity with Cybersecurity testing tools such as Burp suite/ZAP, BDBA, SAST, DAST, Fuzzing, and VA tools such as Nessus or Rapid7.
• Familiarity with Microsoft Threat Modelling tool.
• Demonstrated participation in Capture the Flag (CTF) cybersecurity contests with proven rankings or achievements.

Preferred Skills

• We have a dynamic global reach with diverse operations around the world that will stretch your abilities, provide plentiful career opportunities, and allow you to make an impact every day.
• We are a $2.5 billion, high-performance electrical company with a dedicated team of 11,241 people, across more than 80 global locations.
• We have a robust portfolio of product brands dating back more than 100 years and including: nVent CADDY, ERICO, HOFFMAN, RAYCHEM, SCHROFF and TRACER.
• Commitment to strengthen communities where our employees live and work.
• We encourage and support the philanthropic activities of our employees worldwide.
• Through our nVent in Action matching program, we provide funds to nonprofit and educational organizations where our employees volunteer or donate money.
• Core values that shape our culture and drive us to deliver the best for our employees and our customers. We’re known for being:
• Innovative & adaptable.
• Dedicated to absolute integrity.
• Focused on the customer first.
• Respectful and team oriented.
• Optimistic and energizing.
• Accountable for performance.
• Benefits to support the lives of our employees.

Pay range and compensation package:

UPTO 35 LPA only

Interested candidates can share their resumes at

Also, Can call/ whatsapp at

Regards,

Gulista Shaikh

Delivery Manager-HR

UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber security-as-code platform combines technology innovation and human expertise to make advanced real-time cybersecurity accessible for all organizations by eliminating risks of separate red and blue teams.

By creating continuously optimized identification, detection, and resilience from today's dynamic threat landscape, UltraViolet Cyber provides both managed and custom-tailored unified security operations solutions to the Fortune 500, Federal Government, and Commercial clients. UltraViolet Cyber is headquartered in McLean, Virginia, with global offices across the U.S. and in India.

Our Dedicated Defense model is curated for our customers looking to implement and/or optimize their SIEM and SOC tool stack. This opportunity is aligned within UltraViolet Cyber to perform a key SIEM migration for our customers. The Senior Security SIEM Engineer will be getting to lead a Fortune 250 company through a transformative security and technology project, leading a global team developing methodology for SIEM migration best practices, and have the opportunity to learn cutting edge technology.

Roles Include :
We're looking for a for a full-time Security Staff Consultant to parachute in wherever software insecurity invades and to stomp out bugs and flaws wherever they hide. Does this sound like a good role for you?

In this role, you will join in the execution and delivery of planned project deliverables and milestones that assist clients in learning, understanding, and applying our secure software development methodologies.

You will typically have task responsibility within one project and develop the capability to perform tasks within one or more of our security practices & continuously learn and expand your technical expertise.

Some work is from the office, but you will often go on site to help customers exterminate the bugs and untangle the flaws that make their systems insecure.

Our consultants make themselves and their team indispensable advisors to our customers: they build the relationships that help create and identify follow-on assignments.

Responsibilities include but not limited to the following:
Secure code Analysis and Review

Software/Application Penetration Testing

Network Penetration Testing

Architecture Security Analysis and Threat Modeling

Secure Software Design,Architecture, and Engineering

Software/Application Reverse Engineering

Red Team Analysis (including network, wireless, physical, and social engineering techniques)

Database Security Analysis

Cloud Pen testing ( WS , Azure etc)

Technical Skills
Experience with web application penetration testing

Familiarity with software security weakness and vulnerabilities

Experience in performing source code review

Experience in network penetration testing

Working understanding of one scripting language

Experience in reverse engineering is a plus

Familiarity with at least one software programming language and framework is a plus

Consulting Skills
Ability to interface with clients, utilizing consulting and negotiating skills

Ability to undertake and complete tasks autonomously

Meet schedules and delivery timelines, and to move swiftly from concepts and theory to action

Enthusiasm and commitment

Professional interpersonal skills and an entrepreneurial drive

Written communication skills for use in preparing formal documentation.

Verbal skills that include the ability to clearly articulate thoughts and to deliver presentations.

Willingness to travel 20-50%

Key Qualification
Bachelor's Degree in Computer Science, Engineering or equivalent. Master's Degree preferred

Any relevant certifications such as
CISSP
,
CRTP, CRTO, OSCP, PNPT, CEH, OSWE, CREST, GIAC etc.
is a plus

Preferred Experience
1 to 10 yrs. of work experience in relevant role

Job Role : Professional Services Consulting, Staff Consultant

Experience : 1 to 10 Yrs

Key Skills: SAST, Web Application Security Testing, Mobile Pentesting, Network Pentesting, Hack the Box

Notice Period : 0 to 15 days--Candidates must attend F2F interview in Bangalore(Weekdays only)

No of Positions: 15

Office Address : UV Cyber, PRESTIGE BLUE CHIP SOFTWARE PARK, Hosur Main Road, Chikku Lakshmaiah Layout, Adugodi, Bengaluru, Karnataka

At UV Cyber, Our Software Security and Quality business is all about building secure softwarefaster. That starts with our static analysis, software composition analysis, and dynamic analysis. So our customers can build security and quality into the DNA of their code at any stage of the software development lifecycle and across the supply chain. All while minimizing risks and maximizing speed of application development.

Professional Services Consulting, Staff Consultant

Were looking for a for a full-time Security Staff Consultant to parachute in wherever software insecurity invades and to stomp out bugs and flaws wherever they hide. Does this sound like a

good role for you?

• In this role, you will join in the execution and delivery of planned project deliverables and milestones that assist clients in learning, understanding, and applying our secure software development methodologies.
• You will typically have task responsibility within one project and develop the capability to perform tasks within one or more of our security practices & continuously learn and expand your technical expertise.
• Some work is from the office, but you will often go on site to help customers exterminate the bugs and untangle the flaws that make their systems insecure.

Our Consultants make themselves and their team indispensable advisors to our customers: they build the relationships that help create and identify follow-on assignments.

Responsibilities include but not limited to the following:

• Secure code Analysis and Review
• Software/Application Penetration Testing
• Network Penetration Testing
• Architecture Security Analysis and Threat Modeling
• Secure Software Design, Architecture, and Engineering
• Software/Application Reverse Engineering
• Red Team Analysis (including network, wireless, physical, and social engineering techniques)
• Database Security Analysis
• Cloud Pen testing ( WS , Azure etc)

Technical Skills

• Experience with web application penetration testing
• Familiarity with software security weakness and vulnerabilities
• Experience in performing source code review
• Experience in network penetration testing
• Working understanding of one scripting language
• Experience in reverse engineering is a plus
• Familiarity with at least one software programming language and framework is a plus

Consulting Skills

• Ability to interface with clients, utilizing consulting and negotiating skills
• Ability to undertake and complete tasks autonomously
• Meet schedules and delivery timelines, and to move swiftly from concepts and theory to action
• Enthusiasm and commitment
• Professional interpersonal skills and an entrepreneurial drive
• Written communication skills for use in preparing formal documentation.
• Verbal skills that include the ability to clearly articulate thoughts and to deliver presentations.
• Willingness to travel 20-50%

Key Qualification

• Bachelors Degree in Computer Science, Engineering or equivalent. Masters Degree preferred
• Any relevant certifications such as CISSP, CEH etc. is a plus

Preferred Experience

• 1 to 10 yrs. of work experience in relevant role

Job Purpose

As a Senior Penetration Tester, your primary role is to assess and enhance the security of our information systems, networks, and applications through comprehensive penetration testing and vulnerability assessments. You will work closely with our internal product teams to identify weaknesses in their systems and provide actionable recommendations for improvement. Your expertise will help safeguard sensitive data and protect our customers from potential cyber threats. Additionally, you will be responsible for coordinating penetration tests with third-party vendors when required.

Duties and Responsibilities

o Conduct penetration tests on a wide range of digital products, including networks, web, and mobile applications, to identify vulnerabilities and security weaknesses.

o Collaborate with internal product teams to understand their set-ups, goals, and constraints.

o Effectively communicate findings and solutions to technical and non-technical stakeholders.

o Prepare detailed and clear reports documenting findings, reproduce steps, and recommended remediation steps, ensuring the internal product teams understand the security implications.

o Work with cross-functional teams, including security engineers and developers to help them to implement security measures and resolve identified vulnerabilities.

o When your schedule is constrained, coordinate, and manage penetration tests with third-party vendors, ensuring high-quality and timely delivery.

o Contribute to the development and improvement of our testing methodologies, processes, and tools.

o Stay up to date with the latest threats, vulnerabilities, and exploits and develop new testing techniques as necessary.

o Conduct security tests based on products security requirements.

o

Authorities

o Authorized to conduct penetration tests and security tests on selected digital products.

o Authorized to make recommendations for remediation actions based on test results.

o Authorized to engage with internal product teams to discuss findings and recommendations.

o Authorized to coordinate and manage penetration tests with third-party vendors if needed.

Qualifications

o Bachelor’s degree in computer science/engineering, information security, or a related field.

o Proven experience in penetration testing, vulnerability assessment, and security testing with a minimum of 8 years in a similar role.

o Proven track record of conducting successful penetration tests for a variety of organizations and industries.

o Industry-recognized certifications such as Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN) certifications, or similar qualifications are highly desirable.

o Demonstrated experience in vulnerability research (e.G., CVEs) is a plus.

o Experience in designing, developing, and executing customized penetration testing methodologies.

o Familiarity with various tools and frameworks used in penetration testing, such as Metasploit, Burp Suite, Nessus, Nmap etc.

o Strong knowledge of operating systems (Windows, Linux, and mobile platforms), databases, and web technologies.

o A deep understanding of common security protocols and technologies, including firewalls, intrusion detection/prevention systems, SSL/TLS.

o Programming skills and experience with languages such as Bash, Python, and PowerShell

o The ability to provide clear, comprehensive, and actionable reports on penetration test findings, including recommendations for remediation.

o Exceptional written and verbal communication skills to effectively convey technical information to both technical and non-technical stakeholders.

Department: Cybersecurity / Information Security

Location: Bangalore (On-site)

Employment Type: Full-time

Interested candidates can apply using the form below.

We’re hiring experienced professionals to join our Cybersecurity team in two key positions:

1. VAPT Engineer (L2/L3) – leading advanced vulnerability assessment and penetration testing across enterprise and cloud environments.
2. Information Security Lead – Managed Security Services – managing SOC operations, cloud security governance, risk management, and incident response.

Both roles demand strong technical depth, leadership maturity, and hands-on expertise in enterprise and cloud security ecosystems.

Experience: 5+ years (hands-on)

Reporting To: VAPT Lead

Certification: OSCP preferred

Mode: In-office

Key Responsibilities

• Lead penetration testing across web, mobile, cloud, and infrastructure (Black/Grey/White box).
• Perform manual and automated vulnerability assessments using tools like Burp Suite, Nessus, Metasploit, Nmap, and custom scripts.
• Conduct threat modeling, cloud environment reviews, and risk assessments for business-critical systems.
• Execute security testing on public, private, and hybrid cloud platforms (AWS, Azure, GCP).
• Document findings and provide actionable remediation recommendations.
• Collaborate with DevOps, IT, and Cloud Engineering teams to address vulnerabilities.
• Mentor junior engineers and review reports for accuracy.
• Stay updated with emerging threats, zero-days, and modern attack vectors.
• Align testing with OWASP, NIST, ISO 27001, and cloud security best practices.
• Participate in red team assessments and security audits.

Requirements

• Bachelor’s or Master’s in Computer Science, Cybersecurity, or related field.
• Deep understanding of network protocols, OS internals (Linux/Windows), and cloud architectures.
• Strong knowledge of cloud-native security tools (AWS Security Hub, Azure Defender, etc.).
• Hands-on scripting in Python, Bash, or PowerShell.
• Familiarity with DevSecOps, CI/CD pipelines, and container security (Docker/Kubernetes).
• Experience in secure coding, exploit development, and reverse engineering.
• Certifications like OSCP, CEH, GPEN, LPT, or CISSP are highly preferred.

Experience: 8–10+ years (with 5+ in SOC Leadership)

Certification: OSCP required

Mode: In-office

Key Responsibilities

• Lead SOC operations across L1–L3 analysts, ensuring 24/7 threat monitoring.
• Drive vulnerability management, patch governance, and proactive threat mitigation.
• Manage and secure multi-cloud environments, ensuring compliance and incident readiness.
• Oversee cloud security posture management (CSPM) and identity access governance (IAM).
• Lead incident response, RCA, and recovery for major on-prem and cloud-based incidents.
• Conduct enterprise-wide risk assessments, audits, and compliance checks.
• Ensure alignment with frameworks like NIST, GDPR, HIPAA, PCI-DSS, and ISO 27001.
• Define and implement security policies, playbooks, and automation workflows for cloud and on-prem systems.
• Present dashboards, risk reports, and threat trends to executive leadership.
• Manage relationships with technology partners, MSSPs, and cloud vendors.

Requirements

• 10+ years in Information Security, with at least 5 in SOC or Managed Security leadership.
• Deep understanding of cloud architectures, workload protection, and identity management.
• Hands-on experience with SIEM/SOAR tools (Splunk, ArcSight, Cortex XSIAM, QRadar, Microsoft Sentinel).
• Expertise in threat hunting, malware analysis, endpoint security (EDR/XDR), and cloud security monitoring.
• Proficiency in tools such as WAF, DLP, Burp Suite, and Nessus.
• Strong understanding of hybrid security models and advanced persistent threat (APT) response.
• Familiarity with ITIL or service delivery frameworks is a plus.
• Certifications such as CEH, OSCP, CISSP, or relevant cloud security credentials (CCSP, AWS Security Specialty) preferred.

Interested candidates can apply using the form below.

Please select the role you’re applying for and share your details accurately.

Or Send your resume to

Your potential, unleashed.

India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond.

At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters.

The team

Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks

Your work profile.

As an Assistant Manager in our Cyber Team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: -

Key Responsibilities:

• Total 3+years of experience in Cyber security
• VAPT- Web Application Security Pentesting, Mobile Application Testing, Infra Testing, Source Code Review, Cloud Configuration Review
• Certification - OSCP, CRTP, CEH, EJPT
• Understanding of basic business and information technology management processes.
• Good knowledge of TCP/ IP and Networks including Firewall, IDS/IPS, Routers, Switches, and network architecture.
• Experience of Web Application Security Testing, Infrastructure VAPT, API testing.
• Experience on Mobile Security Pen-Testing (iOS and Android).
• Experience in conducting config reviews of Windows, Linux, UNIX, Solaris, Databases, etc.
• Experience with Vulnerability Management tools: Kali Linux, Acunetix, AppScan, Nexpose, Qualys Guard, Nessus, Nmap, Metasploit, Fortify etc.
• Experience in basic scripting such as: Shell, Python, PERL, etc.
• Basic knowledge of Technologies such as: IPSEC, SSL, SSH, VPN, Ethernet Token Ring, WAP, SMTP, FTP, Frame Relay, WAN, ATM, FDDI, DSL, ISDN, HP Openview, Sun NetManage, Cisco Works, Radius, Big Brother, F5

Desired qualifications / Education :

· B.Tech /BE /BCA / B.Sc /M.Tech - Full time

· Candidates must possess security certification of CEH, LPT, OSCP.

· Good to have security certification for GPEN, CREST

Your role as Leader

We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society.

In addition to living our purpose, Senior Executive across our organization must strive to be:

• Inspiring - Leading with integrity to build inclusion and motivation
• Committed to creating purpose - Creating a sense of vision and purpose
• Agile - Achieving high-quality results through collaboration and Team unity
• Skilled at building diverse capability - Developing diverse capabilities for the future
• Persuasive / Influencing - Persuading and influencing stakeholders
• Collaborating - Partnering to build new solutions
• Delivering value - Showing commercial acumen
• Committed to expanding business - Leveraging new business opportunities
• Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization
• Effective communication – Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities
• Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s).
• Managing change - Responding to changing environment with resilience
• Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision
• Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems
• Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte
• Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviors and attitudes to become more inclusive.

How you’ll grow

Connect for impact

Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report.

Empower to lead

You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership.

Inclusion for all

At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude and potential each and every one of us brings to the table to make an impact that matters.

Drive your career

At Deloitte, you are encouraged to take ownership of your career. We recognise there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte.

Everyone’s welcome… entrust your happiness to us

Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you.

Interview tips

We want job seekers exploring opportunities at Deloitte to feel prepared, confident and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organisation and the business area you’re applying to. Check out recruiting tips from Deloitte professionals.

*Caution against fraudulent job offers*: We would like to advise career aspirants to exercise caution against fraudulent job offers or unscrupulous practices.

At Deloitte, ethics and integrity are fundamental and not negotiable. We do not charge any fee or seek any deposits, advance, or money from any career aspirant in relation to our recruitment process. We have not authorized any party or person to collect any money from career aspirants in any form whatsoever for promises of getting jobs in Deloitte or for being considered against roles in Deloitte. We follow a professional recruitment process, provide a fair opportunity to eligible applicants and consider candidates only on merit. No one other than an authorized official of Deloitte is permitted to offer or confirm any job offer from Deloitte. We advise career aspirants to exercise caution.

In this regard, you may refer to a more detailed advisory given on our website at: