10 Vulnerability Assessment jobs in India
Vulnerability Assessment and Penetration Testing
Bengaluru, Karnataka
dfcs technologies ltd
Posted today
Job Viewed
Job Description
Please find JD.
**Job Summary**:
**Responsibilities**:
2. Perform manual and automated security assessments, leveraging industry-standard tools and techniques.
3. Analyse and interpret security assessment results to prioritize vulnerabilities based on risk level and potential impact.
4. Collaborate with development teams to provide guidance on secure coding practices and remediation strategies.
5. Prepare detailed reports documenting findings, including proof-of-concept demonstrations and recommendations for mitigation.
7. Participate in red team exercises and security incident response activities as needed.
**Requirements**:
1. bachelor's degree in computer science, Information Security, or related field (or equivalent work experience).
3. Proficiency in using industry-standard penetration testing tools such as Burp Suite, OWASP ZAP, Nmap, and Metasploit.
5. Familiarity with web technologies and frameworks, such as JavaScript, PHP, ASP.NET, and Ruby on Rails.
6. Excellent analytical and problem-solving skills, with the ability to think creatively to exploit vulnerabilities.
7. Effective communication skills, including the ability to articulate technical concepts to both technical and non-technical stakeholders.
8. Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Web Application Penetration Tester (GWAPT) are a plus.
**Location: Bengaluru**
**Salary**: ₹400,000.00 - ₹600,000.00 per year
Application Question(s):
- How many years of experience do you have in VAPT?
- Can you attend face to face interview?
**Experience**:
- total work: 1 year (required)
Work Location: In person
**Job Summary**:
**Responsibilities**:
2. Perform manual and automated security assessments, leveraging industry-standard tools and techniques.
3. Analyse and interpret security assessment results to prioritize vulnerabilities based on risk level and potential impact.
4. Collaborate with development teams to provide guidance on secure coding practices and remediation strategies.
5. Prepare detailed reports documenting findings, including proof-of-concept demonstrations and recommendations for mitigation.
7. Participate in red team exercises and security incident response activities as needed.
**Requirements**:
1. bachelor's degree in computer science, Information Security, or related field (or equivalent work experience).
3. Proficiency in using industry-standard penetration testing tools such as Burp Suite, OWASP ZAP, Nmap, and Metasploit.
5. Familiarity with web technologies and frameworks, such as JavaScript, PHP, ASP.NET, and Ruby on Rails.
6. Excellent analytical and problem-solving skills, with the ability to think creatively to exploit vulnerabilities.
7. Effective communication skills, including the ability to articulate technical concepts to both technical and non-technical stakeholders.
8. Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Web Application Penetration Tester (GWAPT) are a plus.
**Location: Bengaluru**
**Salary**: ₹400,000.00 - ₹600,000.00 per year
Application Question(s):
- How many years of experience do you have in VAPT?
- Can you attend face to face interview?
**Experience**:
- total work: 1 year (required)
Work Location: In person
This advertiser has chosen not to accept applicants from your region.
0
Vapt(Vulnerability Assessment and Penetration
Gurugram, Uttar Pradesh
Right Advisors Private Limited
Posted today
Job Viewed
Job Description
Exp:3-6 Yrs
Budget
- 18 LPA
Location
- Gurgaon(WFO)
Profile: VAPT(Vulnerability assessment and Penetration Testing)
Qualification: B.Tech/B.Sc/BCA
**Key Responsibilities**:
- Perform source code review, architecture review, configuration review assessment.
- Conduct penetration tests to exploit identified vulnerabilities and assess the impact on the organization's security posture.
- Collaborate with cross-functional teams to prioritize and remediate identified vulnerabilities in a timely manner.
- Create detailed VAPT reports and provide recommendations for improving security posture.
- Stay current with the latest security threats, vulnerabilities, and best practices.
- CVSS score calculation and manual reporting
**Qualifications**:
- Education: Bachelor's degree in Computer Science, Information Security, or a related field (Master's degree preferred).
- Certifications: Good to have one or more of the following certifications is highly desirable:
- Certified Ethical Hacker (CEH)
- eJPT
- LPT
- Certified Information Systems Security Professional (CISSP)
- Offensive Security Certified Professional (OSCP)
**Skills**:
- Proficiency in using various VAPT tools and frameworks (e.g., Nmap, Nessus, Wireshark, Metasploit, Burp Suite, etc.).
- Strong knowledge of operating systems, networking protocols, and security architectures.
- Hands-on experience with scripting and programming languages (e.g., Python, PowerShell).
- Familiarity with industry-standard security frameworks (e.g., OWASP, NIST).
- Excellent problem-solving and analytical skills.
- Strong communication and report-writing skills.
Pay: ₹1,500,000.00 - ₹1,800,000.00 per year
**Education**:
- Bachelor's (preferred)
**Experience**:
- Account management: 1 year (preferred)
- total work: 1 year (preferred)
- Sales: 1 year (preferred)
- Management: 1 year (preferred)
Work Location: In person
Budget
- 18 LPA
Location
- Gurgaon(WFO)
Profile: VAPT(Vulnerability assessment and Penetration Testing)
Qualification: B.Tech/B.Sc/BCA
**Key Responsibilities**:
- Perform source code review, architecture review, configuration review assessment.
- Conduct penetration tests to exploit identified vulnerabilities and assess the impact on the organization's security posture.
- Collaborate with cross-functional teams to prioritize and remediate identified vulnerabilities in a timely manner.
- Create detailed VAPT reports and provide recommendations for improving security posture.
- Stay current with the latest security threats, vulnerabilities, and best practices.
- CVSS score calculation and manual reporting
**Qualifications**:
- Education: Bachelor's degree in Computer Science, Information Security, or a related field (Master's degree preferred).
- Certifications: Good to have one or more of the following certifications is highly desirable:
- Certified Ethical Hacker (CEH)
- eJPT
- LPT
- Certified Information Systems Security Professional (CISSP)
- Offensive Security Certified Professional (OSCP)
**Skills**:
- Proficiency in using various VAPT tools and frameworks (e.g., Nmap, Nessus, Wireshark, Metasploit, Burp Suite, etc.).
- Strong knowledge of operating systems, networking protocols, and security architectures.
- Hands-on experience with scripting and programming languages (e.g., Python, PowerShell).
- Familiarity with industry-standard security frameworks (e.g., OWASP, NIST).
- Excellent problem-solving and analytical skills.
- Strong communication and report-writing skills.
Pay: ₹1,500,000.00 - ₹1,800,000.00 per year
**Education**:
- Bachelor's (preferred)
**Experience**:
- Account management: 1 year (preferred)
- total work: 1 year (preferred)
- Sales: 1 year (preferred)
- Management: 1 year (preferred)
Work Location: In person
This advertiser has chosen not to accept applicants from your region.
1
Vulnerability Assessment and Penetration Testing
Mumbai, Maharashtra
My Corporate Jobs
Posted today
Job Viewed
Job Description
**Job Requirements**
- The role would require a person with hands-on experience in Vulnerability assessment and Penetration testing program in Enterprise environment having host of tools and technologies.
- Must have experience in running Vulnerability Management and Penetration testing program.
- Must Have: Experience in Tools for Firewall Evasion, Abuses to IPSec VPN, Border Gateway Protocol, GRE Tunnelling.
- Be able to Perform and lead an assessment or penetration test.
- Must produce management dashboard for open Vulnerabilities and Risk for enterprise.
- Shall be able to provide mitigating controls for open risk and exploits for the enterprise environment.
- Shall maintain risk register for open cyber risks in the enterprise.
- Be able to lead a red team engagement and participate in a purple team engagement.
- Have experience in developing exploits and tooling from vulnerabilities both pre and post exploitation.
- Should have experience with tools Burp suite, Metasploit, Tenable, SQL Map, NMAP, SCAPY, and other tools.
- Conduct vulnerability assessment and penetration testing and configuration review for systems and networks.
- Support and recreate proofs of concept from security reports.
- Good exposure to Cloud Applications like AWS, Azure and other SAAS Applications
- Experience in Automating Security tasks using Python or Java Frameworks is a bonus.
- Should be able to think ""Out of the box"".
- Possess ability to think and implement new attack approaches/vectors.
**Skills**
- Strong oral and written communication, analytical and problem-solving skills, as well as excellent judgment on data analysis.
- Proficient in Stakeholder Management and Team Leadership
- Tools - Burp suite, Metasploit, Tenable, SQL Map, NMAP, SCAPY, and other tools.
**Education Qualification**:
- BE / BTECH
- Additional certification would be an added advantage: CEH, CISA, ISO27001, ISO22301, CISSP
**Experience**:
- 3-6 years of proven experience as lead in VAPT and areas having hand on experience on various tools.
**Job Types**: Full-time, Permanent
Pay: Up to ₹2,000,000.00 per year
**Benefits**:
- Health insurance
- Paid sick time
- Provident Fund
Schedule:
- Day shift
Work Location: In person
- The role would require a person with hands-on experience in Vulnerability assessment and Penetration testing program in Enterprise environment having host of tools and technologies.
- Must have experience in running Vulnerability Management and Penetration testing program.
- Must Have: Experience in Tools for Firewall Evasion, Abuses to IPSec VPN, Border Gateway Protocol, GRE Tunnelling.
- Be able to Perform and lead an assessment or penetration test.
- Must produce management dashboard for open Vulnerabilities and Risk for enterprise.
- Shall be able to provide mitigating controls for open risk and exploits for the enterprise environment.
- Shall maintain risk register for open cyber risks in the enterprise.
- Be able to lead a red team engagement and participate in a purple team engagement.
- Have experience in developing exploits and tooling from vulnerabilities both pre and post exploitation.
- Should have experience with tools Burp suite, Metasploit, Tenable, SQL Map, NMAP, SCAPY, and other tools.
- Conduct vulnerability assessment and penetration testing and configuration review for systems and networks.
- Support and recreate proofs of concept from security reports.
- Good exposure to Cloud Applications like AWS, Azure and other SAAS Applications
- Experience in Automating Security tasks using Python or Java Frameworks is a bonus.
- Should be able to think ""Out of the box"".
- Possess ability to think and implement new attack approaches/vectors.
**Skills**
- Strong oral and written communication, analytical and problem-solving skills, as well as excellent judgment on data analysis.
- Proficient in Stakeholder Management and Team Leadership
- Tools - Burp suite, Metasploit, Tenable, SQL Map, NMAP, SCAPY, and other tools.
**Education Qualification**:
- BE / BTECH
- Additional certification would be an added advantage: CEH, CISA, ISO27001, ISO22301, CISSP
**Experience**:
- 3-6 years of proven experience as lead in VAPT and areas having hand on experience on various tools.
**Job Types**: Full-time, Permanent
Pay: Up to ₹2,000,000.00 per year
**Benefits**:
- Health insurance
- Paid sick time
- Provident Fund
Schedule:
- Day shift
Work Location: In person
This advertiser has chosen not to accept applicants from your region.
2
Pentester - Vulnerability Assessment & Penetration Testing (VAPT)
Hyderabad, Andhra Pradesh
ProArch
Posted today
Job Viewed
Job Description
We are hiring a hands-on Penetration Tester to lead and execute end-to-end security assessments across Web, Infrastructure, and Cloud environments. As the technical backbone of our lean and growing VAPT practice, you’ll work closely with the Security Lead and directly engage with clients to deliver meaningful, high-impact security outcomes.
Key Responsibilities:
- Perform manual and automated penetration testing across:
- Web Applications (based on OWASP Top 10)
- Infrastructure (external/internal IPs, firewall review, patch audits)
- Cloud Environments (basic Azure/AWS – IAM, Storage, Networking)
- Identify, exploit, and report on vulnerabilities such as SSRF, RCE, IDOR, LFI, and S3 bucket exposures
- Use tools such as Burp Suite , Nmap , SQLMap , Nikto , Nessus/OpenVAS
- Write high-quality, detailed technical reports with:
- Screenshots for PoCs
- Remediation guidance
- Risk severity scoring (preferably CVSSv3 )
- Collaborate with clients to explain findings and provide actionable recommendations
- Contribute to toolchain improvements and lightweight automation (Python/Bash preferred)
Requirements
- 3–6+ years of hands-on experience in at least 2 of the following areas :
- Web Application Penetration Testing (OWASP Top 10)
- Infrastructure VAPT (internal/external, firewall, patch validation)
- Basic Cloud VAPT (AWS or Azure: IAM, Storage, Networking)
- Proficiency in:
- Manual testing techniques , fuzzing, and exploitation
- Burp Suite (Community or Pro)
- Tools like Nmap, SQLMap, Nikto, Nessus/OpenVAS
- Strong understanding of common vulnerabilities and exploitation techniques
Preferred Certifications
- CEH , eJPT , OSCP (or strong portfolio/proof of hands-on skill)
- AZ-500 or AWS Security Specialty (for cloud security exposure)
Good to Have
- Familiarity with scripting for automation (Python, Bash)
- Exposure to CVSSv3 for vulnerability scoring
- Experience with Dradis , Excel-based reporting , or similar tools
This advertiser has chosen not to accept applicants from your region.
3
Vulnerability Assessment Penetration Testing 9 to
Bengaluru, Karnataka
Capgemini
Posted today
Job Viewed
Job Description
**JobDescription**:
- To integrate security as an integral part during SDLC so as to move from primitive security to security by design to impart customized security awareness trainings to developers on secure coding based on industry recognized best practices such as SANS Top 20 OWASP Top 10 NIST etc
- To review existing security awareness training material and align it to industry best practices To carry out periodic risk assessments to gauge security risks during system design and to monitor and manage them till closure.
- To carry out secure code reviews and to find out critical security flaws in the code.
**Primary Skills**:
- Advanced technical analysis on intrusions Providing rich client specific reports Assist in preparation of new joiner security kit Technically assist team in resolving installation setup issues etc of VAPT tools infrastructure.
**Secondary Skills**:
- Good written verbal communication skills Interact with senior management clients Hands on industry best standards tools Certification at min any one of the following CEH OSCP CPT LPT CHFI CISSP etc Eligibility Graduate from any university Experience in any reputed IT Service based company
- To integrate security as an integral part during SDLC so as to move from primitive security to security by design to impart customized security awareness trainings to developers on secure coding based on industry recognized best practices such as SANS Top 20 OWASP Top 10 NIST etc
- To review existing security awareness training material and align it to industry best practices To carry out periodic risk assessments to gauge security risks during system design and to monitor and manage them till closure.
- To carry out secure code reviews and to find out critical security flaws in the code.
**Primary Skills**:
- Advanced technical analysis on intrusions Providing rich client specific reports Assist in preparation of new joiner security kit Technically assist team in resolving installation setup issues etc of VAPT tools infrastructure.
**Secondary Skills**:
- Good written verbal communication skills Interact with senior management clients Hands on industry best standards tools Certification at min any one of the following CEH OSCP CPT LPT CHFI CISSP etc Eligibility Graduate from any university Experience in any reputed IT Service based company
This advertiser has chosen not to accept applicants from your region.
4
Senior Consultant - VAPT (Vulnerability Assessment & Penetration Testing)
Pune, Maharashtra
Apt Resources
Posted today
Job Viewed
Job Description
Apt Resources is hiring for our client, a leading cybersecurity services firm, seeking an experienced Senior Consultant – VAPT to join their expert team. The ideal candidate will have deep expertise in infrastructure and application security assessments, penetration testing, and a solid understanding of modern security threats and countermeasures.
Key Responsibilities: Infrastructure VA/PT:- Conduct black-box and grey-box vulnerability assessments and penetration tests on system/network/cloud environments.
- Map network infrastructure, discover ports/services, and audit OS, network, and security configurations.
- Use tools like NMap, Nessus, Metasploit, Kali Linux for exploiting vulnerabilities.
- Stay current with CVEs and threat intelligence relevant to supported technologies.
- Prepare and present detailed findings and mitigation plans to clients.
- Deliver cloud infrastructure security assessments and configuration audits.
- Create and deliver comprehensive, client-specific technical reports.
- Perform vulnerability assessments of Web, Mobile, and Thick-client applications based on OWASP standards.
- Combine automated scanning with manual testing techniques to detect flaws.
- Conduct phishing and spear-phishing simulations to assess end-user security awareness.
Requirements
Qualifications:- Bachelor's degree in Computer Science, IT, or a related field.
- 8–10 years of hands-on experience in VAPT.
- CEH certification is required.
- OSCP or CREST certifications are a plus.
- Experience working in an MSSP (Managed Security Services Provider) environment is preferred.
- Strong understanding of Windows, Unix/Linux systems, firewalls, VPNs, and security infrastructure.
- Expertise in tools like NMap, Metasploit, Kali Linux, Nessus, NetCat, HPing, Qualys, and RetinaCS.
- Strong understanding of CVE databases, exploit development, and countermeasures.
- Familiarity with scripting languages such as C++, C#, Perl, HTML, Shell, etc.
- Knowledge of firewalls, IPS, DNS security, VLAN, web filtering, and VPNs.
- Experience with cloud security assessment across major platforms (AWS, Azure, GCP).
- Strong communication, presentation, and documentation skills.
- Ability to work independently and lead security assessments across client environments.
- Willingness to travel overseas for project deployments.
- Exposure to RFP response preparation, solution architecture, and client-facing presentations.
Benefits
Salary: Up to INR 18 LPA
This advertiser has chosen not to accept applicants from your region.
5
Vulnerability Assessment Penetration Testing 4 to 6
Bengaluru, Karnataka
Capgemini
Posted today
Job Viewed
Job Description
To carry out secure code reviews and to find out critical security flaws in the code- Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
- Analyze scan reports and suggest remediation / mitigation plan
- Providing rich client specific reports
- Demonstration of proof of concepts for exploits, manual penetration testing
- Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
- Security configuration review of database /servers / firewalls / switches / routers, etc
- Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
**Primary Skills**:
**Secondary Skills**:
Certified with any technology such as CEH, CISSP, etc
- Analyze scan reports and suggest remediation / mitigation plan
- Providing rich client specific reports
- Demonstration of proof of concepts for exploits, manual penetration testing
- Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
- Security configuration review of database /servers / firewalls / switches / routers, etc
- Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
**Primary Skills**:
**Secondary Skills**:
Certified with any technology such as CEH, CISSP, etc
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Vulnerability assessment Jobs in India !
6
Vulnerability Assessment Penetration Testing 4 to 6
Bengaluru, Karnataka
Capgemini
Posted today
Job Viewed
Job Description
Job Description
- To carry out secure code reviews and to find out critical security flaws in the code- Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
- Analyze scan reports and suggest remediation / mitigation plan
- Providing rich client specific reports
- Demonstration of proof of concepts for exploits, manual penetration testing
- Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
- Security configuration review of database /servers / firewalls / switches / routers, etc
- Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
- Primary Skills
- Secondary Skills
- Certified with any technology such as CEH, CISSP, etc
- To carry out secure code reviews and to find out critical security flaws in the code- Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
- Analyze scan reports and suggest remediation / mitigation plan
- Providing rich client specific reports
- Demonstration of proof of concepts for exploits, manual penetration testing
- Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
- Security configuration review of database /servers / firewalls / switches / routers, etc
- Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
- Primary Skills
- Secondary Skills
- Certified with any technology such as CEH, CISSP, etc
This advertiser has chosen not to accept applicants from your region.
7
Vulnerability Assessment Penetration Testing 4 to 6
Pune, Maharashtra
Capgemini
Posted today
Job Viewed
Job Description
To carry out secure code reviews and to find out critical security flaws in the code
- Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
- Analyze scan reports and suggest remediation / mitigation plan
- Providing rich client specific reports
- Demonstration of proof of concepts for exploits, manual penetration testing
- Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
- Security configuration review of database /servers / firewalls / switches / routers, etc
- Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
**Primary Skills**:
**Secondary Skills**:
- Certified with any technology such as CEH, CISSP, etc
- Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
- Analyze scan reports and suggest remediation / mitigation plan
- Providing rich client specific reports
- Demonstration of proof of concepts for exploits, manual penetration testing
- Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
- Security configuration review of database /servers / firewalls / switches / routers, etc
- Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
**Primary Skills**:
**Secondary Skills**:
- Certified with any technology such as CEH, CISSP, etc
This advertiser has chosen not to accept applicants from your region.
8
Vulnerability Assessment Penetration Testing 4 to 6
Pune, Maharashtra
Capgemini
Posted today
Job Viewed
Job Description
To carry out secure code reviews and to find out critical security flaws in the code
- Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
- Analyze scan reports and suggest remediation / mitigation plan
- Providing rich client specific reports
- Demonstration of proof of concepts for exploits, manual penetration testing
- Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
- Security configuration review of database /servers / firewalls / switches / routers, etc
- Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
**Primary Skills**
**Secondary Skills**
- Certified with any technology such as CEH, CISSP, etc
- Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
- Analyze scan reports and suggest remediation / mitigation plan
- Providing rich client specific reports
- Demonstration of proof of concepts for exploits, manual penetration testing
- Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
- Security configuration review of database /servers / firewalls / switches / routers, etc
- Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
**Primary Skills**
**Secondary Skills**
- Certified with any technology such as CEH, CISSP, etc
This advertiser has chosen not to accept applicants from your region.
9