949 Vulnerability Assessment jobs in India

Job Title:

Lead Penetration Tester

About the Role

We are looking for a highly skilled and experienced Lead Penetration Tester to join our cybersecurity team.

The ideal candidate will be responsible for conducting and leading penetration testing across web applications, APIs, infrastructure, cloud, and network environments.

You will play a critical role in identifying vulnerabilities, guiding remediation efforts, and helping strengthen our security posture.

• Plan, execute, and lead penetration tests on web applications, APIs, cloud environments, networks, and IT infrastructure
• Simulate real-world attack scenarios to assess vulnerabilities and business risk
• Document findings with clear and actionable remediation guidance
• Collaborate with engineering, cloud, and security teams to improve security controls
• Review and validate fixes, and support threat modeling where needed
• Stay up to date with the latest attack techniques, tools, and industry trends

Required Qualifications

• 5–15 years of hands-on penetration testing experience
• OSCP certification is mandatory
• Proven expertise in testing:
• Web and mobile applications
• APIs (REST, GraphQL, etc.)
• Network and infrastructure (internal and external)
• Cloud environments (e.g., AWS, Azure, GCP)
• Strong knowledge of security frameworks and methodologies (OWASP, MITRE ATT&CK, PTES, etc.)
• Solid scripting or automation skills (Python, Bash, etc.) is a plus
• Excellent communication skills, both written and verbal

Benefits

• Opportunity to work on global security projects
• Work in a collaborative and fast-paced cyber security team
• Opportunity to learn from global leaders
• Exposure to modern cloud technologies and complex enterprise environments
• Competitive salary and benefits
• Flexible working hours
• Learning & Development (L&D) opportunities

Lead Cybersecurity Professional

This position offers a unique opportunity to join our cybersecurity team as a highly skilled Lead Penetration Tester. You will play a critical role in identifying vulnerabilities, guiding remediation efforts, and helping strengthen our security posture.

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Workplace type:

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Make an impact with NTT DATA
Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive.

Workplace type:

About NTT DATA
NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo.

Equal Opportunity Employer
NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Apt Resources is hiring for our client, a leading cybersecurity services firm, seeking an experienced Senior Consultant – VAPT to join their expert team. The ideal candidate will have deep expertise in infrastructure and application security assessments, penetration testing, and a solid understanding of modern security threats and countermeasures.

• Conduct black-box and grey-box vulnerability assessments and penetration tests on system/network/cloud environments.
• Map network infrastructure, discover ports/services, and audit OS, network, and security configurations.
• Use tools like NMap, Nessus, Metasploit, Kali Linux for exploiting vulnerabilities.
• Stay current with CVEs and threat intelligence relevant to supported technologies.
• Prepare and present detailed findings and mitigation plans to clients.
• Deliver cloud infrastructure security assessments and configuration audits.
• Create and deliver comprehensive, client-specific technical reports.

• Perform vulnerability assessments of Web, Mobile, and Thick-client applications based on OWASP standards.
• Combine automated scanning with manual testing techniques to detect flaws.

• Conduct phishing and spear-phishing simulations to assess end-user security awareness.

Requirements

• Bachelor's degree in Computer Science, IT, or a related field.
• 8–10 years of hands-on experience in VAPT.
• CEH certification is required.
• OSCP or CREST certifications are a plus.
• Experience working in an MSSP (Managed Security Services Provider) environment is preferred.
• Strong understanding of Windows, Unix/Linux systems, firewalls, VPNs, and security infrastructure.

• Expertise in tools like NMap, Metasploit, Kali Linux, Nessus, NetCat, HPing, Qualys, and RetinaCS.
• Strong understanding of CVE databases, exploit development, and countermeasures.
• Familiarity with scripting languages such as C++, C#, Perl, HTML, Shell, etc.
• Knowledge of firewalls, IPS, DNS security, VLAN, web filtering, and VPNs.
• Experience with cloud security assessment across major platforms (AWS, Azure, GCP).

• Strong communication, presentation, and documentation skills.
• Ability to work independently and lead security assessments across client environments.
• Willingness to travel overseas for project deployments.
• Exposure to RFP response preparation, solution architecture, and client-facing presentations.

Benefits

Salary: Up to INR 18 LPA

Talworx is hiring!

Our client in India, a professional services firm, is the Indian member firm affiliated. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. Our client has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai,

Noida, Pune, Vadodara, and Vijayawada.

Our client in India offers services to national and international clients in India across sectors. We strive to

provide rapid, performance-based, industry-focussed and technology-enabled services, which reflect a

shared knowledge of global and local industries and our experience of the Indian business environment.

Our professionals provide the experience to help companies stay on track and deal with risks that could

unhinge their business survival. Our services enable clients to effectively co-ordinate their key growth,

quality and operational challenges and working in partnership with us.

Requirements

Roles & Responsibility:

• Conduct thorough and detailed cyber risk assessments for our clients, analyzing their digital

infrastructure, systems, and security controls.

• Collaborate with cross-functional teams to gather essential information and data required for

comprehensive risk assessments.

• Evaluate and interpret assessment results to identify potential vulnerabilities and risks, and provide

actionable recommendations for risk mitigation.

• Stay up-to-date with the latest cyber threats, attack vectors, and industry best practices to enhance the

effectiveness of risk assessments.

• Prepare and deliver clear and concise reports summarizing the findings of risk assessments to clients

and internal stakeholders.

• Provide expert advice and consultancy to clients, guiding them in implementing robust cybersecurity

risk management strategies.

• Mentor and support junior team members to foster their professional growth and skills in cyber risk

assessments.

Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or related

fields.

• A minimum of 5+ years of hands-on experience in conducting cyber risk assessments and related

security assessments.

• Industry certifications such as CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC:27001/22301/2000 LI/LA or

equivalent are highly valued.

• Profound knowledge of cybersecurity frameworks, industry standards, and best practices.

• Proficiency in using various security assessment and techniques.

• Strong analytical and problem-solving skills, with the ability to think critically and strategically.

• Excellent communication and presentation skills, capable of effectively communicating technical

concepts to both technical and non-technical audiences.

• Demonstrated experience in project management and handling multiple assessments simultaneously.

• A proactive and self-motivated approach to work, with a commitment to continuous learning and

professional development.

• Network Security, infrastructure assessment and network architecture design review.

• Conceptual knowledge of OT Security/ISA 62443 standard is preferable.

>> CRITERIA

o Education 60% above throughout academics

o One 3 years (at least) regular course is must either Diploma or Graduation

o Course: B.E. / B. Tech / MCA / M. Tech / MBA degree or equivalent

o Certification: CISM / CISSP / CCSP / CISA / CRISC / ITIL / ISO 27001/22301/2000 LI/LA (At least

one)

o CCNA (Mandatory), CCNP or equivalent(optional).

>> COMPENSATION

O Compensation is competitive with industry standards

o Details of the compensation breakup will be shared with short-listed candidates only

Benefits

Work with one of the Big 4's in India

Healthy work Environment

Work Life Balance