360 Burp Suite Jobs - Page 4

Security Analyst/ Pen Tester Join us as a Security Analyst at Dedalus , one of the Worlds leading healthcare technology companies, at our team in Chennai, India to do the best work of your career and make a profound impact in providing better care for a healthier planet. LINK TO APPLY : https://tinyurl.com/2x9mn999 What youll achieve As a Security Analyst , you will be part of our highly successful team, utilising your skills for Security Vulnerability Analysis/ Penetration Testing where you will test, assess, exploit & report the security vulnerabilities in the software application, infrastructure and provide recommendations for the suitable solution/ remedy. Working with an extended highly skilled team, you will be making a profound impact throughout the healthcare sector. You will: Security Vulnerability Analysis/ Threat Modelling & Risk Assessment Executing static code review using automated SAST tools & False Positive Analysis Performing dynamic testing (DAST) using automated tools like Burp-suite, Invicti/ Nessus Manual Penetration Testing and Ethical Hacking technics to exploit vulnerabilities Prepare assessment & validation report on the vulnerabilities & risks with impact, artifacts, recommended solution/ mitigation and POCs Explain threats & present assessment reports to Developer/ Architect community Take the next step towards your dream career. At Dedalus Life flows through our software. Every day we do something special by helping caregivers and health professionals deliver better care to their served communities. Take the next step in your career that will make a profound impact. Heres what youll need to succeed: Essential Requirements: 4-8 Years experience in security vulnerability analysis and Pen testing (VAPT) on cloud services, web products/ enterprise applications. Ability to execute Appsec tools; Mandatory to know industry standard tools like Burp-suite, Invicti & Fortify (or any SAST tool), Cloud-Native tools and open-source tools like - Kali, Nmap, Wireshark, Metasploit, ZAP, Echo Mirage. Technical Knowledge on SDLC and implementation essentials of various application types - Desktop, Web, API, Mobile (Hybrid/ Native) & Cloud (AWS, Azure, or GCP). Ability to understand & review Java or .NET (must have), Angular (nice to have) code with respect to security vulnerability. Clear understanding on OWASP, GDPR/ ISO Security standards. Exposure to DevAppSec automation & scripting is preferred. Valid Certification in VAPT/ Ethical Hacking in Mobile /Web /Cloud security is must. Knowledge of AI tools & securing Docker containers like Kubernetes are advantages. Understanding of real world threats & data protection acts are preferred We are Dedalus, come join us Dedalus is committed to providing an engaging, rewarding work experience that reflects the passion our employees bring to our mission of helping clinicians and nurses deliver better care to their served communities. Our company fosters a culture where employees are encouraged to learn and innovate, and to enable and enhance clinical co-operation and processes while making a meaningful difference for millions of people around the world. Each person is the end point and the starting point of the Groups activities and the ultimate beneficiary. For this reason, we are so proud of doing our very special jobs each day. Our company is enriched by a diverse population of 7,600 people in more than 40 countries that work together to innovate and drive better healthcare options for millions of patients around the world. We are the people of Dedalus. Application Closing date: 26th September 2025 Our Diversity & Inclusion Commitment sets out Dedalus’ approach to ensuring respect, inclusion and success for all our colleagues and the wider communities we operate in. It is imperative for us to share our commitment and dedication to ensure an inclusive and diverse workplace. We recognise that we have improvements to make and on this journey, we must remain authentic and realistic but also ambitious. Our diversity & inclusion commitment – Dedalus Global Life Flows Through Our Software

Skills: Web, Mobile, Network & Cloud Security Assessments, Vulnerability Assessment, Pen Testing, Threat Modelling, OWASP Top 10, ASVS, Source Code Reviews. Tools: Burp Suite, Kali Linux, Metasploit, NMAP, Nessus, Nexpose, Wireshark, sqlmap. Languages: Java, Python, Golang. Threat Detection and Analysis: Monitor network traffic, system logs, and security alerts to detect and analyze potential security threats, such as malware, intrusions, and unauthorized access.Incident Response: Develop and execute incident response plans to address and mitigate security incidents and breaches.Vulnerability Assessment: Identify vulnerabilities in software, hardware, and network configurations, and recommend patches and security updates.Security Monitoring: Continuously monitor and analyze security events, assess system vulnerabilities, and recommend security enhancements.Security Policies and Procedures: Develop and enforce security policies, standards, and procedures to ensure a consistent and secure computing environment.Access Control: Implement and manage access control systems, including user authentication, authorization, and password policies.Security Tools: Utilize a range of security tools, such as intrusion detection systems (IDS), intrusion prevention systems (IPS), firewalls, antivirus software, and data encryption.

The Security Tester will play a crucial role in identifying and mitigating security vulnerabilities within products, applications, and infrastructure. You will be responsible for designing, executing, and reporting on security testing activities to ensure that systems meet industry best practices and regulatory requirements. Your responsibilities will include designing, developing, and executing security testing strategies such as vulnerability assessments, penetration testing, and code reviews. You will identify and document security vulnerabilities and risks, providing detailed reports and recommendations for remediation. Additionally, you will assist in the development and implementation of security policies, standards, and procedures, while collaborating with development teams to integrate security into the software development lifecycle. To succeed in this role, you should have a Bachelor's degree in Computer Science, Information Security, or a related field, along with at least 3 years of experience in security testing or a similar role. A strong understanding of security concepts like OWASP Top Ten, encryption, authentication, and network security is required. Proficiency in using security testing tools such as Burp Suite, Metasploit, Nessus, and OWASP ZAP is essential. Knowledge of programming languages like Python, Java, or C++ is advantageous. You should possess excellent analytical and problem-solving skills, along with the ability to work independently and as part of a team. Strong communication and documentation skills are crucial for this role. A certification in security testing (e.g., OSCP, CEH, CISSP) is preferred, and experience with cloud security (AWS, Azure, or GCP) is a plus. Stay updated with the latest security threats, vulnerabilities, and best practices, and participate in incident response activities by providing expertise and support as needed.,

Designation: IT Risk manager 4+ Years Navi Mumbai (Juinagar) - WFO 5 Days (1st & 3rd Sat working) Immediate Joiners B)Skills: Proficient in VAPT tools for applications and infrastructure (e.g., Burp Suite, OWASP ZAP, Nessus, Nmap, Postman). Strong grasp of OWASP Top 10, API Security best practices, and secure coding principles. Experience in secure configuration reviews for firewalls, servers, endpoints, and API gateways. Familiar with DevSecOps, including integrating security. Understanding of API security frameworks: OAuth 2.0, JWT, API key management, rate limiting. Hands-on with incident response workflows (e.g., Splunk, CrowdStrike). Skilled in writing and maintaining security documentation, including SOPs and incident response plans. Awareness of regulatory standards: RBI Cybersecurity Framework, PCI DSS, NIST. Exposure to risk assessments, security audits, and third-party security evaluations. Ability to collaborate with Dev, Infra, and Compliance teams to ensure secure deployments. C)Qualifications: Graduation or Post Graduate D)Experience: Role relevance/Tenure/Industry 4 - 7 years of relevant experience in BFSI domain Sincerely, Sonia TS

Key Result Areas: Effectively lead and manage the application security testing team. Ensure the team meets project deadlines and objectives. Successfully plan and execute security assessments on software applications and Infrastructure devices. Identify and report vulnerabilities accurately and in a timely manner. Monitor and track the resolution of identified vulnerabilities. Stay current with evolving security threats and best practices. Effectively communicate security risks and recommendations to stakeholders. Job Description: The Application Security Testing Manager will be responsible for leading a team of security testers and ensuring the security and integrity of software applications within G&B. This role involves planning, executing, and overseeing security assessments, identifying vulnerabilities, and driving their remediation. Preferred candidate profile Essential: Proven experience (typically 5+ years) in application security testing and vulnerability assessment. Familiarity with security testing tools such as Burp Suite, OWASP ZAP, Nessus, and others. Proficiency in programming and scripting languages (e.g., Python, Java) for security testing and automation. Strong understanding of software development lifecycles and secure coding practices. Experience with security standards, frameworks, such as OWASP SPECIAL SKILLS REQUIRED Essential: Bachelor's or Master's degree in computer science, cybersecurity, or a related field. Excellent communication skills. Strong problem-solving and analytical abilities.

Job Description: Prudent Technologies and Consulting is seeking an experienced Principal Application Security Engineer to lead our rapidly expanding web application penetration testing services. This senior-level position will play a critical role in advancing our offensive security capabilities, mentoring junior security consultants, and delivering high-value security assessments to our global client base. The ideal candidate will combine technical expertise in web application security with leadership skills and client engagement experience to drive our security consulting practice forward. As a Principal Application Security Engineer, you will serve as a technical leader within our offensive security practice, specializing in web application penetration testing methodologies. You will lead complex security engagements, provide subject matter expertise to clients and internal teams, mentor junior security consultants, and contribute to the development of our service offerings. This position requires a deep understanding of application security principles, extensive hands-on testing experience, and exceptional communication skills to translate technical findings into actionable business insights. Responsibilities: Lead complex web application penetration testing engagements for enterprise clients, ensuring delivery of high-quality assessments that meet or exceed client expectations. Serve as the principal security advisor to clients, translating technical findings into business context and providing strategic remediation guidance. Develop and enhance the organization's application security testing methodologies, incorporating industry best practices like OWASP and MITRE ATT&CK frameworks. Perform advanced manual testing to identify sophisticated vulnerabilities beyond the capabilities of automated tools, including business logic flaws, authentication bypasses, and authorization weaknesses. Conduct comprehensive threat modeling sessions with development teams to identify security risks early in the software development lifecycle. Lead code reviews to identify security vulnerabilities in client applications and provide remediation guidance. Create detailed technical reports and executive summaries that clearly articulate security findings, business impact, and prioritized remediation recommendations. Mentor junior security consultants, providing technical guidance and contributing to their professional development. Collaborate with sales teams to scope complex engagements, participate in pre-sales activities, and support business development efforts. Contribute to research initiatives that enhance the company's security testing capabilities and industry reputation. Evaluate emerging tools and technologies to improve the efficiency and effectiveness of security testing processes. Qualifications: Required Qualifications: 5-8+ years of professional experience in application security, with a strong focus on web application penetration testing. Demonstrated expertise in identifying, exploiting, and documenting complex web application vulnerabilities following OWASP methodologies. Proficiency with industry-standard penetration testing tools including Burp Suite Professional, DAST scanners, and other exploitation frameworks. Experience leading security assessments across diverse technologies and environments including web applications, APIs, cloud services (AWS, Azure, GCP), and modern web frameworks. Strong understanding of secure coding practices, common vulnerability patterns, and remediation strategies across multiple programming languages and frameworks. Exceptional technical writing skills, with the ability to produce clear, concise, and compelling security assessment reports for both technical and executive audiences. Proven ability to build trusted relationships with clients and effectively communicate complex security concepts to technical and non-technical stakeholders. Experience mentoring junior security professionals and leading technical teams. Preferred Qualifications: Bachelor's degree in computer science, cybersecurity, or related technical field. Good to have (preferred) advanced security certifications such as OSWE, GWAPT, GPEN, OSCP, or equivalent industry recognitions. Experience developing custom tools or scripts to automate aspects of penetration testing using Python, Go, or similar languages. Prior software development experience that informs a deep understanding of modern application architectures and development practices. Contributions to the security community through published research, CVE discoveries, open-source tool development, or conference presentations. Experience with mobile application security testing (iOS and Android) and API security assessment methodologies. Knowledge of cloud security architecture and specialized cloud service penetration testing techniques. Experience with AI/ML system security evaluation and testing methodologies. Education: Direct work experience performing application penetration testing assessments; ability to begin testing immediately with guidance on Prudent's specific approach and methodology. Bachelor's degree in computer science, cybersecurity, or related technical field.

Job Description: Prudent Technologies and Consulting is hiring for a fast-growing Cybersecurity team that supports a customer base including the worlds largest organizations. We have an immediate opening for a Senior Application Security Consultant. The role requires an experienced offensive consultant who understands application security testing methodologies, frameworks, tools and reporting. As a Senior Consultant you will perform and lead technical teams to conduct thorough security assessments as well as perform field related research. Candidates should be familiar with a variety of technologies including web, mobile, API, AI/LM, cloud, desktop, single sign-on and OAuth. Responsibilities: Consult with technical and non-technical client stakeholders Collaborate with Sales teams to assist in scoping efforts Lead projects and mentor less experienced consultants Perform advanced comprehensive penetration tests, adhering to industry-standard best practices Conduct penetration testing across diverse environments, including desktop applications, mobile applications, web applications, cloud environments, on-prem environments, APIs and AI/LM Document and report vulnerabilities, show proof-of-concepts where applicable, and provide detailed explanations to highlight severity, business impact, and tailored remediation steps Manages priorities and tasks to achieve utilization targets Participate in research and development efforts to improve the Cybersecurity practice Qualifications: Required Qualifications: 8+ years of direct experience performing manual penetration testing assessments on desktop applications, mobile applications, web applications, cloud environments, API and AI/LM Proficient at using penetration testing tools such as Burp Suite, DAST scanners, Metasploit and Nessus to identify and exploit vulnerabilities Able to write deliverable reports, including executive summaries and presentations, and status reports for clients Understanding of industry-standard security frameworks (e.g., OWASP and MITRE ATT&CK) Excellent project management, leadership, time management, and client consulting skills Preferred Qualifications: Bachelors degree in computer science, information security, or related field Good to have (preferred) relevant certifications (e.g., OSCP and/or OSWE) Experience with scripting languages such as Python and Bash Experience with application development, systems engineering, or similar Published CVE/CWE contributions, participation in CTF events and independent research projects Education: Direct work experience performing application penetration testing assessments; ability to begin testing immediately with guidance on Prudents specific approach and methodology

About the Role We are looking for a Software Engineer Product Security to join our security team. The role involves ensuring product security across the software development lifecycle, performing penetration testing, automating security processes, and integrating secure coding practices. You will work closely with engineering teams to identify, mitigate, and automate security controls while enabling scalable and secure product development. Key Responsibilities Conduct security assessments and penetration testing of applications and services. Identify, analyze, and remediate vulnerabilities across products. Implement and automate security checks within CI/CD pipelines. Collaborate with development teams to integrate secure coding practices. Monitor, analyze, and enhance the security posture of products using industry-standard tools. Stay updated on the latest security trends, vulnerabilities, and exploits. Required Skills & Qualifications Strong knowledge of Cybersecurity concepts and OWASP Top 10. Hands-on experience with penetration testing and vulnerability assessment. Programming skills in Python and/or Java for automation and tooling. Good understanding of SQL and common database security issues. Experience in automation of security tasks in DevOps/CI-CD environments. Security Tools Expertise Nmap network scanning and reconnaissance Burp Suite – web application security testing OWASP ZAP – automated vulnerability scanning Nice to Have Experience in threat modeling and secure design reviews. Familiarity with container security (Docker, Kubernetes). Knowledge of cloud security (AWS / Azure / GCP).

As an Associate Information Security (Vulnerability Assessment and Penetration Testing), you will join our dynamic cyber security team in Gurgaon. Your primary responsibility will be to assist in conducting vulnerability assessments and penetration testing on various systems, networks, and applications. This position is well-suited for recent graduates or individuals seeking to kickstart their career in cyber security, offering valuable hands-on experience and guidance from seasoned professionals. Key Responsibilities: - Conduct Vulnerability Assessments: You will help identify and assess vulnerabilities in systems, applications, and networks by utilizing a variety of tools and techniques for scanning and analyzing security weaknesses. - Penetration Testing: Assist in planning and executing penetration tests on web applications, networks, and other systems. Document and report security issues and vulnerabilities uncovered during testing. - Security Analysis and Reporting: Analyze assessment and testing results to pinpoint potential security risks. Contribute to the development of comprehensive reports containing findings, risk analysis, and recommended corrective actions. - Collaboration and Support: Collaborate closely with senior analysts and team members to grasp project requirements and goals. Provide assistance in implementing necessary security measures and solutions. - Learning and Development: Engage in training sessions, workshops, and certification programs to enhance your technical skills. Stay abreast of the latest security trends, tools, and best practices. Required Qualifications: - Educational Background: Hold a Bachelor's degree in Computer Science, Information Technology, Cyber Security, or a related field. - Technical Skills: Possess a basic understanding of networking, operating systems, and web applications. Have 2 to 4 years of total experience. Familiarity with common security tools such as Nmap, Wireshark, Metasploit, Burp Suite. Basic knowledge of programming/scripting languages like Python and Bash. This role offers an exciting opportunity to grow your career in cyber security and make significant contributions to our team.,

Job Summary: We are seeking a skilled and motivated Assistant Manager – VAPT with expertise in Cloud Security to support the organization’s cybersecurity initiatives through comprehensive vulnerability assessments and penetration testing. The ideal candidate will have hands-on experience in identifying security weaknesses in systems, applications, networks, and cloud environments, and provide actionable recommendations to mitigate risks. Key Responsibilities: Conduct regular Vulnerability Assessments and Penetration Tests on web applications, mobile applications, networks, cloud infrastructure (AWS, Azure, GCP), and APIs. Identify, analyze, and document security flaws and vulnerabilities using manual techniques, custom scripts, and automated tools. Perform cloud security assessments to identify misconfigurations, vulnerabilities, and risks associated with cloud services (AWS, Azure, GCP). Work closely with IT, cloud infrastructure, and development teams to validate findings, suggest remediation steps, and verify the implementation of fixes. Collaborate with third-party vendors for external testing and audits. Prepare detailed technical reports and executive summaries of findings and recommendations. Ensure compliance with internal policies and external regulatory requirements (e.g., ISO 27001, PCI-DSS, GDPR, SOC2). Stay updated with the latest vulnerabilities, exploits, and security news, particularly in the cloud security domain, through continuous learning and threat intelligence feeds. Assist in security incident response efforts related to vulnerabilities discovered in cloud environments and on-prem systems. Required Skills & Qualifications: Bachelor’s degree in Computer Science, Information Technology, or a related field. 4+ years of experience in VAPT or a similar cybersecurity role, with hands-on experience in cloud security . Proficiency in tools such as Nessus, Burp Suite, Nmap, Metasploit, Wireshark, Kali Linux , and cloud security tools (e.g., AWS Inspector, Azure Security Center, GCP Security Command Center ). Strong knowledge of OWASP Top 10 , SANS 25 , and secure coding practices. Hands-on experience in securing cloud environments (AWS, Azure, GCP), including network security, identity and access management (IAM), and infrastructure-as-code (IaC) security. Familiarity with scripting languages (Python, Bash, PowerShell) for automation and custom testing is a plus. Industry certifications such as OSCP, CEH, GPEN, or eJPT and cloud security certifications like AWS Certified Security Specialty , Azure Security Engineer are highly desirable. Strong analytical, problem-solving, and communication skills.

About The Role Project Role : Security Delivery Practitioner Project Role Description : Assist in defining requirements, designing and building security components, and testing efforts. Must have skills : Mobile Security Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Practitioner, you will assist in defining requirements, designing and building security components, and testing efforts. A typical day involves collaborating with cross-functional teams to ensure that security measures are integrated into the development process, conducting assessments to identify vulnerabilities, and providing recommendations for enhancements. You will also engage in discussions to share insights and contribute to the continuous improvement of security practices within the organization. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Conduct security assessments and audits to identify potential vulnerabilities.- Collaborate with development teams to integrate security best practices into the software development lifecycle. Professional & Technical Skills: - Must To Have Skills: Proficiency in Mobile Security.- Good To Have Skills: Experience with application security testing tools.- Strong understanding of secure coding practices and methodologies.- Familiarity with threat modeling and risk assessment techniques.- Knowledge of compliance standards and regulations related to security. Additional Information:- The candidate should have minimum 3 years of experience in Mobile Security.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Educational Requirements Bachelor of Engineering Service Line Infosys Quality Engineering Responsibilities Hands-on knowledge of Security testing methodologies like OWASP Top 10, SANS 25 etc., Ability to perform automated and manual hands-on penetration security testing e.g. DAST, SAST and SCA, identifying security risks within applications, cloud infrastructure, security controls and Network systems. Additional Responsibilities: The successful candidate must be highly motivated, fast learner, flexible, willing to assume responsibility and deliver quality work on time Constantly identify opportunities for enhancing productivity using automation and process improvements. Exposure to scripting languages(e.g. Shell) Knowledge on DevSecOps Technical and Professional Requirements: Any specific tools required Burpsuite, WebInspect, Fortify, Zap, Checkmarx Preferred Skills: Technology->Security Testing->Security Testing - ALL

Duration- 3 Months Position Overview: We are seeking a talented and enthusiastic Cyber Security Intern to join our team. The role involves designing and developing Capture the Flag (CTF) challenges and Boot2Root machines to help enhance cybersecurity skills for our community and clients. This internship offers a hands-on opportunity to apply technical skills in a practical and engaging way. Key Responsibilities: CTF Challenge Development: Design and develop creative and challenging CTF puzzles across various categories such as web exploitation, reverse engineering, cryptography, and forensics. Test and validate the challenges to ensure functionality and fairness. Boot2Root Machine Creation: Build and configure virtual machines for Boot2Root challenges, simulating real-world security vulnerabilities. Document the walkthroughs and hints for the created machines. Security Content Research: Research and stay updated on the latest security vulnerabilities and attack techniques to incorporate them into challenges. Analyze and replicate real-world attack scenarios for educational purposes. Team Collaboration: Collaborate with the team to brainstorm ideas and ensure challenges align with organizational goals. Review and refine challenges created by other team members. Key Skills Required: Proficiency in Linux (command-line operations, system configurations, etc.). Knowledge of basic web programming languages (e.g., HTML, JavaScript, PHP). Familiarity with Python and Bash scripting for automation and challenge creation. Understanding of basic networking concepts (protocols, ports, firewalls). Problem-solving mindset with creativity in designing engaging challenges. Preferred Skills (Not Mandatory): Experience with tools like Wireshark, Burp Suite, or Metasploit. Basic knowledge of ethical hacking or penetration testing methodologies. Familiarity with virtualization platforms like VMware, VirtualBox, or AWS.

About ASB ASB is committed to empowering students with expertise in emerging technologies. We are looking for an enthusiastic and passionate Cybersecurity Training Expert to lead and mentor students, equipping them with industry-relevant skills in cybersecurity. This role requires a deep understanding of cybersecurity principles, hands-on technical expertise, and a passion for teaching. The ideal candidate will have solid experience in network security, penetration testing, ethical hacking, compliance, and security frameworks. They should be an excellent communicator who can break down complex cybersecurity concepts into easy-to-understand modules. Key Responsibilities 1. Training Delivery Design, develop, and deliver high-quality cybersecurity training through courses, workshops, boot camps, and webinars. Cover a broad range of cybersecurity topics, including but not limited to: Network Security & Firewalls Penetration Testing & Ethical Hacking Cloud Security & DevSecOps Security Compliance & Auditing (ISO 27001, NIST, GDPR, etc.) Threat Intelligence & Incident Response SIEM, SOC & Security Tools (Burp Suite, Wireshark, Metasploit, AWS Security Hub, etc.) 2. Curriculum Development Develop and continuously update cybersecurity training materials, including hands-on labs, case studies, quizzes, and real-world projects. Ensure training content is aligned with industry best practices, compliance frameworks, and emerging security trends. 3. Training Management Organize and manage cybersecurity training sessions, ensuring smooth content delivery, engagement, and assessments. Track learner progress and provide additional support, including one-on-one guidance and mentorship. 4. Technical Support & Mentorship Assist students with technical queries and troubleshoot cybersecurity-related challenges. Provide career guidance and mentorship, helping students navigate certifications (CEH, CISSP, OSCP, CISM, etc.) and job opportunities in cybersecurity. 5. Industry Engagement Stay updated with the latest cybersecurity threats, vulnerabilities, and defense mechanisms. Represent ASB at cybersecurity conferences, webinars, and industry events. 6. Assessment & Evaluation Develop hands-on challenges, CTFs (Capture The Flag), and practical assessments to evaluate student proficiency. Provide constructive feedback to enhance their technical skills. Required Qualifications & Skills Educational Background Bachelor's or Masters degree in Computer Science, Cybersecurity, Information Security, or a related field. Hands-on Cybersecurity Experience 3+ years of experience in cybersecurity roles such as Penetration Tester, Security Analyst, SOC Analyst, Cybersecurity Engineer, or Security Auditor. Expertise in ethical hacking, threat analysis, cloud security, risk assessment, and compliance. Strong knowledge of Linux, Windows Security, Networking, and Cryptography. Teaching & Communication Skills 2+ years of experience in training, mentoring, or delivering cybersecurity education. Ability to explain complex security concepts in a clear and engaging way. Cybersecurity Tools & Platforms Experience with security tools such as Kali Linux, Metasploit, Burp Suite, Wireshark, Nessus, Nmap, Snort, Splunk, SIEM platforms, and AWS Security Hub. Knowledge of SOC operations, incident response, and security automation tools. Passion for Education A genuine enthusiasm for training the next generation of cybersecurity professionals. Preferred Qualifications Industry Certifications CEH, OSCP, CISSP, CISM, CCSP, AWS Security Certification, or equivalent. Experience in Online Teaching Prior experience in online training platforms (Udemy, Coursera, etc.) or learning management systems (LMS). Knowledge of Security Frameworks & Compliance Familiarity with ISO 27001, NIST, GDPR, SOC 2, and PCI-DSS. Experience in Blue Team & Red Team Operations Understanding of ethical hacking (offensive security) and defensive security (SOC, SIEM, endpoint protection, etc.).

Application Security group is responsible for ensuring that Fidelity applications are designed, developed and deployed securely. The role will involve working closely with development groups to ensure secure design, development and implementation of services and components. As Technical Specialist, person would be responsible to understand complex technical and architectural issues from security perspective and the ability to understand the implications associated with the chosen technical strategy * Conduct Vulnerability Assessments of Network and Security Devices using various open source and commercial tools * Map out a network, discover ports and services running on the different exposed network and security devices * Analyze scan reports and suggest remediation / mitigation plan * Keep track of new vulnerabilities on various network and security devices for different vendors * Review software posture and work with operations to plan code version upgrade requirements of supported security and network devices Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise * 2-4 years’ experience in Cybersecurity * Knowledge on VA tool such as Tenable * Should be able scan devices using VA tool * Should be able to prepare report based on VA tool * Should have knowledge on Web Penetration & Network Penetration testing. * Should have a skill to conduct Gray box & black box testing * Should worked on various PT tools such as Burp Suite, Acunetix, etc. Preferred technical and professional experience Preferred OEM Certified SOAR specialist + CEH

Will be working on Application security testing Skills. Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools. Will be responsible for Secure Coding Practices. Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 5 plus years of experience Application Security TestingExperience with static and dynamic application security testing (SAST/DAST/ SCA) tools. Secure Coding PracticesKnowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities. Threat ModellingAbility to conduct threat modelling sessions to identify and mitigate security risks Preferred technical and professional experience Vulnerability AssessmentExperience in conducting vulnerability assessments and penetration testing Application Security TestingExperience with static and dynamic application security testing (SAST/DAST) tools. Security ToolsProficiency in using security tools like Burp Suite, Nessus, or Fortify.

The role supports full end to end software development cycle, from initial client engagement, through assessments and road-mapping, to longer term engagement in an advisory capacity. As an Application Security Consultants, the person should leverage the technical expertise of the security competencies, varied product and delivery capabilities. Hands on experience in Secure SDLC, DAST, SAST, HP Fortify and Burp Suite Provide strategic advice and insights to clients based on deep domain knowledge and industry best practices. Identify potential risks and develop mitigation strategies to ensure project success and client satisfaction. Lead and coordinate incident response activities, including investigation, containment, and remediation of security incidents. Provide security training and awareness programs to developers on security policies, procedures, and best practices. Ensure applications team adhere to relevant security standards, regulatory requirements, and industry best practices (e.g., OWASP, NIST, PCI DSS). Provide support for regulatory and internal audits, diligently tracking reported observations through to closure Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE/Btech/MCA/M.Tech. 5-7 yrs hands on experience.Hands on experience in Secure SDLC, DAST, SAST, HP Fortify and Burp SuiteEnsure applications team adhere to relevant security standards, regulatory requirements, and industry best practices (e.g., OWASP, NIST, PCI DSS). Preferred technical and professional experience OEM certification from one of the following, HP Fortify and Burp Suite

A Technical Support Representatives at IBM is a front-line position supporting our products and making sure they are at their best for our customers. With over 100 years in technology, IBM has built a strong reputation of quality service and this role ensures we continue to deliver on that promise. If you enjoy helping people with technical issue, you’ll love your career at IBMApplication Security group is responsible for ensuring that Fidelity applications are designed, developed and deployed securely. The role will involve working closely with development groups to ensure secure design, development and implementation of services and components. As Technical Specialist, person would be responsible to understand complex technical and architectural issues from security perspective and the ability to understand the implications associated with the chosen technical strategy * Conduct Vulnerability Assessments of Network and Security Devices using various open source and commercial tools * Map out a network, discover ports and services running on the different exposed network and security devices * Analyze scan reports and suggest remediation / mitigation plan * Keep track of new vulnerabilities on various network and security devices for different vendors * Review software posture and work with operations to plan code version upgrade requirements of supported security and network devices * Advanced technical analysis on intrusions * Audit configuration of Network and Security devices * Providing rich client specific reports Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise 1-2 years’ experience in Cybersecurity * Knowledge on VA tool such as Tenable * Should be able scan devices using VA tool * Should be able to prepare report based on VA tool * Should be able to explain the report to client based on the findings * Should have knowledge on Web Penetration & Network Penetration testing. Should have a skill to conduct Gray box & black box testing * Should worked on various PT tools such as Burp Suite, Acunetix, etc. * Should be able do SCD scanning for Windows & Linux * Should have good knowledge on OS such as Windows, Linux * Experience on network vulnerability scanning penetration testing * Experience with Nessus NetCat, NMAP Backtrack, Metasploit, , HPing, and similar tools set like RetinaCS, Qualys, McAfee (Foundstone) * Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions (proxy, web filtering) * In-depth understanding on Common Vulnerability Exposure (CVE)/ Cert advisory database * Analytical thinker willing to "think outside the box" to resolve customer impacting situations on first contact; understand customer risk profile. * Self-starter and ability to deliver under defined time lines Preferred technical and professional experience * Integrate Security into DevOps and enable security automation in CI/CD pipeline * Professional Qualification CEH, ECSA, LPT or Any other equivalent certification. * Focused and versatile team player that is comfortable under pressure * Ability to remove barriers and enable teams to complete their objectives * Understanding of emerging technologies and corresponding security threats * Self-motivated, flexible, with a ‘can do’ attitude. * Ability to pick up business knowledge, new technology areas, new processes/methodologies and apply these changes in the day-to-day working to improve Security organization.

Educational Requirements Bachelor of Engineering Service Line Infosys Quality Engineering Responsibilities As part of the Infosys delivery team, your primary role would be to ensure effective Design, Development, Validation and Support activities, to assure that our clients are satisfied with the high levels of service in the technology domain. You will gather the requirements and specifications to understand the client requirements in a detailed manner and translate the same into system requirements. You will play a key role in the overall estimation of work requirements to provide the right information on project estimations to Technology Leads and Project Managers. You would be a key contributor to building efficient programs/ systems . If you think you fit right in to help our clients navigate their next in their digital transformation journey, this is the place for you! Additional Responsibilities: Job Opening is for multiple locations- Bangalore, Hyderabad, Trivandrum, Chennai, Pune Technical and Professional Requirements: Security testing with 3-10 years exp - SAST/DAST/API, Network, Mobile Security/DevSecops/Cloud Security/Threat Modelling/Vulnerability Management/Logging & Audit/GRC/Security Operations/IAMSkills Required - Security Testing--Primary skills:Application Security,Application Security->Burpsuite,Application Security->Devsecops,Application Security->Ethical Hacking(CEH),Application Security->Nessus,Application Security->SSL(Secure Sockets Layer),Application Security->Threat Modeling,Application Security->Vulnerability Assessment/Penetration Testing,Application Security->Vulnerability Management,Application Security->Web Security,Application Security->Webservices Security,Security testing->Vulnerability testing,Technology->Application Security->Vulnerability Management->Qualys,Mobile Testing->Mobile Security Testing Preferred Skills: Technology->Application Security->Application Risk Profiling Threat Modeling Technology->Application Security->Ethical Hacking Technology->Application Security->Mobile Application Security Technology->Application Security->Penetration Testing (Black/White/Grey Box Testing) Technology->Application Security->Vulnerability Management Technology->Mobile Testing->Mobile Security Testing Technology->Security Testing->Security Testing - ALL Technology->Infrastructure Security->Secure Web Gateway->TrendMicro Interscan web security Virtual appliance

As a Deception Technology Specialist, you will be responsible for designing, implementing, and managing deception strategies and technologies within the organisation's cybersecurity infrastructure. Your expertise in working with Deception Technology and SIEM Tools will be crucial in developing scalable, reliable, and fault-tolerant systems. You will play a key role in integrating/modifying existing open-source software to meet the specific requirements of the organization. Additionally, your hands-on experience in virtualization, cloud deployments, networking, and debugging code will be essential in overcoming fundamental challenges while coding. Your proficiency in Python and familiarity with tools such as nmap, Metasploit, Wireshark, Burp suite, etc., will be highly beneficial in executing your responsibilities effectively. You should be comfortable using Linux OS and possess excellent writing and communication skills to contribute to technical writing within the group. To be eligible for this role, you must hold a Bachelor's degree in computer science or a related field and have at least 2 years of experience in the cybersecurity domain as outlined in the responsibilities section. Travel may be required across the country for project execution, monitoring, and coordination with geographically distributed teams. To apply for this position, please submit a cover letter summarizing your relevant experience in technologies and software, along with your resume and the latest passport-size photograph.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. ESP QA Project Lead Position Overview: We are seeking a highly skilled and experienced Software Quality Assurance (QA) Project Lead to join the Implementation and Integration Quality Assurance team within the Enterprise Security Program. The ideal candidate will have a strong background in managing and leading testing and automation teams, with a proven track record of ensuring the highest standards of software quality and security. This role requires a deep understanding of Quality Assurance processes and best practices, security testing tools, and methodologies, as well as exceptional leadership and management skills. Key Responsibilities: Leadership and Team Management: Lead, mentor, and manage a team of vendor QA engineers and automation testers engaged in support of Information Security projects. Foster a collaborative and high-performance team environment. Provide guidance, support, and governance for vendor team members, ensuring their professional growth, development, and continuous improvement. Project Management: Plan, coordinate, and oversee QA projects from inception to completion. Develop and maintain project QA deliverables, timelines, ensuring timely completion of high-quality project results. Collaborate with cross-functional teams, including development, product management, and operations, to ensure alignment and successful project execution. Quality Assurance Strategy: Input to and implement comprehensive QA strategies, processes, and best practices. Establish and maintain QA metrics and KPIs to measure and improve project quality. Continuously evaluate and enhance QA methodologies to keep pace with industry standards and technological advancements. Security Testing: Conduct thorough security testing of software applications to identify vulnerabilities and ensure compliance with security standards. Utilize security testing tools and methodologies to perform testing, vulnerability assessments, and code reviews. Collaborate with the Information Security team to confirm security issues and implement remediation plans. Automation: Drive the adoption of test automation frameworks and tools to improve testing efficiency and coverage. Facilitate the development and maintenance of automated test scripts for functional, regression, and performance testing. Including test data creation and management. Ensure the integration of automated tests into the CI/CD pipeline. Documentation and Reporting: Create and maintain detailed test plans, test cases, and test scripts. Document and report defects, issues, and test results in a clear and concise manner. Provide regular status updates and reports to stakeholders and senior management. Qualifications: Bachelor's or Master's degree in Computer Science, Information Technology, or a related field. Minimum of 5 years of experience in software quality assurance, with at least 3 years in a leadership or management role. Proven experience in managing and leading testing and/or automation teams. Strong proficiency in security testing tools and methodologies, such as OWASP, Burp Suite, Metasploit, and others. In-depth knowledge of QA processes, methodologies, and best practices. Experience with test automation tools and frameworks, such as Robot Framework, Selenium, JUnit, TestNG, or similar. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams. Detail-oriented with a commitment to delivering high-quality software. Preferred Qualifications: Relevant certifications, such as Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or similar preferred. Experience with Agile/Scrum methodologies. Familiarity with DevOps practices and CI/CD pipelines. Work Environment: This position can be based in either India or Argentina. Flexible working hours may be required to accommodate global team collaboration. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people, and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.,

As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients" systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices. Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients" IT infrastructure, applications, and networks. Conduct thorough security assessments using industry-standard tools and methodologies, including but not limited to, Nmap, Nessus, Metasploit, Burp Suite, and OWASP. Identify and exploit security vulnerabilities to assess the potential impact on clients" systems and data. Prepare detailed assessment reports outlining findings, risk levels, and recommended remediation measures. Collaborate with clients" IT teams to prioritize and address identified security issues in a timely manner. Develop and implement custom scripts or tools to enhance testing capabilities and automate repetitive tasks. Stay abreast of emerging security threats, vulnerabilities, and industry best practices to continually improve testing methodologies. Provide guidance and mentorship to junior security engineers, fostering a culture of knowledge sharing and skill development within the team. Bachelor's degree in Computer Science, Information Technology, or related field. 5+ years of experience in cybersecurity, with a focus on Vulnerability Assessment and Penetration Testing. Proficiency in using tools such as Nmap, Nessus, Metasploit, Burp Suite, and OWASP. Hands-on experience with various operating systems, including Windows, Linux, and Unix. Strong understanding of network protocols, web application architecture, and common security vulnerabilities. Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or similar certifications preferred. Excellent analytical skills and attention to detail, with the ability to prioritize and manage multiple tasks effectively. Effective communication skills, both verbal and written, with the ability to convey technical concepts to non-technical stakeholders. Proven track record of delivering high-quality security assessments and actionable recommendations.,

Job Title: QA Head Utilities Domain Location: Hyderabad, India Work Mode: Work from Office (4 days/week) Experience: 10+ Years Industry: Utilities (Electricity, Water, Gas, Renewable Energy) Employment Type: Full-time Note: Good to have experience working with utility clients in Europe, US, or UK is mandatory Role Overview: We are looking for a strategic and hands-on QA Head to lead quality assurance across multiple programs, good to have experience in the Utilities domain . This leadership role requires deep domain expertise, strong technical acumen, and the ability to drive QA excellence across enterprise-grade platforms. Key Responsibilities: Lead QA delivery across utility transformation programs Define and implement QA strategy, governance, and best practices Manage test planning, execution, defect tracking, and release readiness Guide a team of QA engineers and automation specialists Align QA processes with business and delivery goals Establish quality dashboards and reporting for leadership visibility Ensure compliance with industry standards and regulatory requirements Evaluate and adopt modern QA tools and technologies Required Skills & Experience: 10+ years in QA roles, with 3+ years in leadership Strong domain knowledge in utilities will be an added advantage (electricity, water, gas, renewables) Experience with platforms like SAP IS-U, Oracle Utilities, Microsoft Dynamics 365 Hands-on expertise in: Automation Tools: Selenium / Playwright / Cypress / TestNG Performance Testing: JMeter / LoadRunner / Gatling CI/CD & DevOps: Jenkins / GitHub Actions / Azure DevOps Cloud Testing: Azure / AWS / GCP Test Management: Jira / Zephyr / TestRail Security Testing: OWASP / Burp Suite / Fortify Strong leadership, stakeholder management, and communication skills Proven ability to scale QA teams and processes in dynamic environments Preferred Qualifications: Bachelors or Masters in Engineering, Computer Science, or related field Certifications in QA (ISTQB, CSTE), Agile, or utility platforms Experience in Agile or SAFe environments Why Join Us? Lead QA for high-impact digital transformation programs Collaborate with domain and technology experts Enjoy a balanced work model (4 days/week from Hyderabad office) Competitive compensation and strong career growth opportunities

The Security Trust Engineer uses this understanding of security and sales enablement along with data analysis and engineering skills to identify patterns and gaps in Security Trusts vendor security program and supply chain security activities. The Security Trust Engineer works with the team to collaborate on requirements, gather data on a regular cadence, and compile analyses and represent them to a variety of enterprise audiences. The Security Trust Engineer plays a critical role in helping ensure the security, reliability, and trustworthiness of RingCentral products and services. The role represents Security Trusts interests with Security Operations and Product Development in designing, implementing, and maintaining secure systems, developing automated tools, and collaborating with various teams to embed security best practices throughout the software development lifecycle. The ideal candidate will have a strong background in software engineering and data analysis, a deep understanding of security principles, and a proven track record of delivering robust and scalable solutions. This is an exciting opportunity to grow in and contribute to a security concentration that is quickly evolving and highly relevant. The Security Trust Engineer is a professional who is excited by the explosion of advancements occurring in security, data, and artificial intelligence. RingCentral maintains the vision that data analytics helps the organization make better decisions by providing the right data at the right time. As a member of the team, creative thinking, a solid work ethic, and a passion for developing and delivering great solutions are a must. Were currently looking for: Security Trust Engineer Responsibilities: Security Architecture & Design: Collaborate with engineering teams to design, review, and implement secure architectures for new and existing products and features. Identify and mitigate security risks early in the development process. Provide expert guidance on security best practices, secure coding guidelines, and vulnerability remediation. Secure Development & Automation: Develop, implement, and maintain security tools, frameworks, and automation to enhance our security posture. Automate security testing. Implement security controls to be used by vendors and product teams. Vulnerability Management & Incident Response: Participate in security assessments, penetration testing, and configuration checking for newly deployed vendors. Analyze and triage security vulnerabilities, working with security operations and application security teams to ensure timely remediation. Assist in responding to vendor security incidents, performing root cause analysis, and implementing preventative measures. Trust Asset Development and Program Reporting: Maintain up-to-date representation of Security Trust team activities ROI. This includes measurement of field team exposure to trust assets, and tracking how the assets enable revenue. Use tools such as Power BI and Tableau to present a single pane of glass view to leadership, capturing the Security Trust teams sales enablement data and statistics to show growth, pain points, and related data. Design and integrate tools, including leveraging AI, to support program needs of reporting on sales enablement and alerts in vendor monitoring . Partner with other stakeholders to help improve Security Trust tools and processes. Collaboration & Education: Work closely with business owners, vendors, and operations teams to embed security into every stage of the vendor implementation process. Mentor and educate business owners on security best practices for vendor deployments. Stay up-to-date with the latest supply chain security threats, technologies, and industry trends. Qualifications: 5+ years of experience in a technical security-focused engineering role, such as Security Engineer, Application Security Engineer, or supply chain engineering. Strong proficiency in at least one, and ideally multiple, programming languages such as: Python (highly preferred for automation and tooling) Go Java Node.js/JavaScript C++/C# Solid understanding of security principles and common attack vectors such as OWASP Top 10, common web application vulnerabilities, API security, access controls, network protocols. Experience with cloud security best practices and technologies (AWS, Azure, GCP).. Hands-on experience with security tools and technologies such as: Vulnerability scanners (DAST/Burp Suite, Qualys) Configuration testing (APIs, access controls) Credential verification JIRA, Confluence Experience building and securing RESTful APIs and microservices. Solid data mining and analysis expertise, including integrating data from multiple sources. Experience using Power BI or Tableau. Excellent problem-solving skills and the ability to work independently and as part of a team. Strong communication and interpersonal skills with the ability to explain complex security concepts to technical and non-technical audiences. Bachelor's degree in Computer Science, Information Security, or a related technical field,or equivalent practical experience. Bonus Points (Nice to Have): Relevant security certifications such as CISSP, CEH, OSCP, GSEC. Experience with blockchain application security or cryptography. Experience with compliance frameworks such as SOC 2, ISO 27001, GDPR. What we offer: Mediclaim Benefits Paid Holidays Casual/Sick Leave Privilege Leave Bereavement Leave Maternity Leave Paternity Leave Wellness Coaching Employee Referral Bonus Professional Development Allowances Night Shift Allowances

Job Summary: We are seeking a skilled and proactive VAPT/Penetration Tester/Red Team/Code review analyst to join our cyber security team. The ideal candidate will be responsible for identifying vulnerabilities in our systems, networks, and applications through comprehensive assessments and simulated attacks, ensuring the robustness and integrity of our digital assets. Key Responsibilities: Conduct thorough vulnerability assessments and penetration tests on various systems, networks, Code Review, and applications. Identify, exploit, and document security vulnerabilities and weaknesses. Develop and execute testing methodologies and tools to simulate real-world attacks. Collaborate with IT and development teams to provide actionable recommendations for remediation. Prepare detailed reports outlining findings, risk assessments, and suggested mitigations. Stay updated with the latest security threats, vulnerabilities, and testing techniques. Assist in developing and maintaining security policies, procedures, and best practices. Required Qualifications: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Proven experience in vulnerability assessment and penetration testing. Proficiency with tools such as Metasploit, Burp Suite, Nmap, Nessus, and Wireshark. Strong understanding of network protocols, operating systems (Windows, Linux), and web application security. Familiarity with scripting languages like Python, Bash, or PowerShell. Excellent analytical, problem-solving, and communication skills. Preferred Qualifications: Relevant certifications such as OSCP, CEH, GPEN, or similar. Experience with cloud security assessments (AWS, Azure, GCP). Knowledge of secure coding practices and DevSecOps methodologies. Familiarity with compliance standards like ISO 27001, PCI DSS, or NIST.