3,330 Vulnerability Assessments jobs in India

We're Nagarro.

We are a Digital Product Engineering company that is scaling in a big way We build products, services, and experiences that inspire, excite, and delight. We work at scale across all devices and digital mediums, and our people exist everywhere in the world experts across 39 countries, to be exact). Our work culture is dynamic and non-hierarchical. We're looking for great new colleagues. That's where you come in

REQUIREMENTS:

• Total experience 1+ years.
• Basic understanding of Information Security principles and frameworks (ISO 27001, SOC 27002, NIST).
• Exposure to VAPT tools and techniques (via projects, labs, or internships).
• Awareness of Data Privacy regulations (GDPR, CCPA, etc.).
• Understanding of auditing concepts risk-based auditing, security control testing, evidence review.
• Familiarity with Governance, Risk & Compliance (GRC) practices.
• Exposure to data analysis and statistics for reporting and metrics.
• Basic knowledge of Software Development Life Cycle (SDLC) and its security implications.
• Understanding of IT systems and cloud platforms (AWS, Azure, GCP).
• Strong analytical, communication, and documentation skills.
• Keen attention to detail and willingness to learn audit methodologies.
• Excellent communication and collaboration skills for working across global teams.

RESPONSIBILITIES:

• Understanding functional requirements thoroughly and analysing the client's needs in the context of the project.
• Envisioning the overall solution for defined functional and non-functional requirements, and being able to define technologies, patterns and frameworks to realize it.
• Determining and implementing design methodologies and tool sets.
• Enabling application development by coordinating requirements, schedules, and activities.
• Being able to lead/support UAT and production roll outs.
• Creating, understanding and validating WBS and estimated effort for given module/task, and being able to justify it.
• Addressing issues promptly, responding positively to setbacks and challenges with a mindset of continuous improvement.
• Giving constructive feedback to the team members and setting clear expectations.
• Helping the team in troubleshooting and resolving of complex bugs.
• Coming up with solutions to any issue that is raised during code/design review and being able to justify the decision taken.
• Carrying out POCs to make sure that suggested design/technologies meet the requirements.

Responsibilities

• Application Security Testing/Penetration Testing (Web-based, Thick client, web services, Mobile Android & IOS, Network PT)
• Static Code Analysis/ Secure Code Review
• Security defect Tracking and working closely with Developers to fix the issue
• Strong experience with the following tools – Burp Suite, Wireshark, Nmap, Metasploit, Checkmarx/Fortify, and Nessus.
• Excellent English communication skills (verbal and written)

Requirements

• 2+ years of work experience in VAPT
• CEH/ OSCP/ OSCE and ISCP certification

Why You'll Enjoy Working at Kratikal:

1. Get the fast learning and exciting environment of a startup, combined with the stable work and strong performance of a bigger company. There's lots of room to learn, grow, and share your ideas.
2. We also provide good benefits like health insurance, a gratuity payment, and Employees' Provident Fund (a savings plan for your future).
3. We are an equal opportunity employer, where everyone has a fair chance.

About Us:

Kratikal Tech Private Limited is a leading B2B cybersecurity firm offering cutting-edge cybersecurity solutions and services such as Network Security Audits, Compliance Implementation, IoT Security, and VAPT. Serving over 150+ enterprise customers and 1825+ SMEs across industries, including E-commerce, Fintech, BFSI, NBFC, Telecom, Consumer Internet, Cloud Service Platforms, Manufacturing, and Healthcare, Kratikal is dedicated to helping organizations combat cybercriminals using advanced, technology-driven cybersecurity solutions.

The company also develops in-house cybersecurity products, including AutoSecT , competing with industry giants, alongside TSAT (Threatcop Security Awareness Training), TDMARC (Threatcop DMARC), TLMS (Threatcop Learning Management System), and TPIR (Threatcop Phishing Incident Response). These products have received numerous awards and recognitions for their innovation and effectiveness. Kratikal has been honored as the Top Cyber Security Startup at the 12th Top 100 CISO Awards. With a global reach, Kratikal collaborates with renowned organizations to secure their digital landscapes.

For more information, visit our websites at and

Greetings from TCS!

Role: Cyberark PAM

Experience range : 6 to 8 years

Location: Bengaluru, Hyderabad, Chennai, Pune, Kolkata

Job Description:

• Provide BAU support for secrets management applications like CyberArk, HashiCorp Vault.
• Collaborate with various internal and external stakeholders/support teams as required to support the application and business needs
• Work with client applications to provide integration/onboarding guidance.
• Perform BAU validations and work with support teams on automation of manual tasks.
• Document the product, process, and work with L1/2 teams to provide day to day BAU support for customer reporter issues
• Facilitate security assessments and collaborate on remediation with involved support teams to ensure safety and soundness.
• Gather requirements and provide walkthroughs to businesses on usage of various SDKs and API services available for integration with Secrets/Identity and Access Management application
• Be responsible to assess the risk and associated impact of all operational issues and change events and react quickly to escalate to technology management in a timely manner when required
• Provide on-call support in rotation as required.
• Basic experience working with one or more of these scripting languages – Python, Unix Shell, Perl & PowerShell scripting.

Company : TCS

Experience Range : 6 to 8 Years

Location : Bengaluru, Hyderabad

Job Description:

• Design, configure, and maintain CyberArk Privileged Access Security (PAS) components including CPM, PSM, Vault, AIM etc.
• Integrate CyberArk with enterprise systems (e.g., AD, LDAP, ServiceNow, SIEM, cloud platforms).
• Automate onboarding and lifecycle management of privileged accounts using CyberArk APIs and scripts.
• Conduct PAM assessments, generate compliance reports, and assist with audits.
• Collaborate with internal teams to support secure access practices and incident response efforts.

Years of Exp: 3-5 yrs

Budget: 20 Lacs max

Notice Period: Immediate

Location: Pune only

Work Mode: Hybrid(3 days)

Interview Round:-

1 round internal -virtual

2nd round internal-virtual

3rd Client Round

Required Skill Set:

Should have experience in VAPT,pentesting, vulnerability risk management, PCI,compliance.

Web, API, Mobile and Network, is,

Certified in CEH

Security concepts

Web VAPT

SAST

DAST

Mobile VAPT

Cloud AWS

Tools

Network Security

Join our Team
About This Opportunity
We are now looking for a Security Analyst professional. This job role is responsible for monitoring, coordination, support, management, and execution of reactive maintenance activities to ensure that services provided to customers are continuously available and performing to Service Level Agreement (SLA) performance levels. The professional will work alongside a highly skilled, diverse team, making sure that the information assets, that we are responsible to protect, are secured.

What You Will Do
Support the following systems and functions:

• Security event management on 24*7 shift
• Monitor incoming event queues for potential security incidents
• Security incident management, 1st level triaging, issues and RCA
• Perform initial investigation and triage of potential incidents; and raise or close events as applicable
• Monitor SOC ticket (or email) queue for potential event reporting from outside entities and individual users
• Support parsers and rules development for the SIEM
• Raise incidents to respective team for resolution (within SLA)
• Identity Access Management
• Create and track the access to customer environments
• Process improvements
• Identify improvements in processes and KPIs
• Adapt to improvement initiatives
• Shift handover
• Maintain SOC shift logs with relevant activity from the shift
• Document investigation results, ensuring relevant details are passed to Security Engineer for final event analysis
• Update SOC collaboration tool as necessary
• Vulnerability scanning and reporting
• Schedule the vulnerability assessment scan for desired frequency based on agreed plan for nodes in scope
• Track and provide details of the scan planned/ ongoing/ completed status as and when required
• Governance Reports
• Preparation of daily, weekly and monthly reports

You will bring
Basic knowledge of a Security Information and Event Management System (SIEM), such as McAfee, Splunk, Qradar, etc.

• Basic knowledge of a vulnerability scanning system such as Nessus, Tripwire, etc.
• Knowledge of both Linux-based and MS Windows-based systems with technical understanding and skills for analytical problem-solving
• Knowledge of IP networking
• Ability to work in shifts
• The ability to work constructively under pressure
• Ability to work both in a team as well as individually
• Knowledge sharing & collaboration skills
• Customer oriented, service minded
• Deliver results & meet customer expectations
• Excellent communication skills, English is a must

Key Qualifications:
Education:

• Graduate in Computer Science or similar

Minimum years of relevant experience:

• 1 to 2 years with at least 1 year of experience in IT security
• ITIL certification, CEH, Security +, CCNA Security or similar will be an advantage
• Basic knowledge of telecommunications networks will be an added advantage