Job Title: Vulnerability Assessment and Penetration Testing Internship for Technical services - (Performance based conversion to full-time Role) Job Location: Mumbai (On-site) Duration: 6 Months Note: Looking only for Immediate joiners (5 Days) Qualifications: BE/B. Tech with specialization in cyber security, MCA, M. Tech / Master’s in Information security, or Forensics Analysis Knowledge. Mandatory Certifications: CEH-EC-council / EJPT / PNPT / EWPT / CRTP Role and Responsibility: • Conduct Network/ System Vulnerability Assessments, Penetration Testing using tools to evaluate attack vectors, identify system vulnerabilities, and provide appropriate remediation plans for mitigation of the identified vulnerabilities. • Conduct Application vulnerability assessments, Penetration Testing for web applications, identify and report vulnerabilities, provide recommendations, and track closure of identified vulnerabilities. • Perform Configuration compliance assessments for Endpoints / Assets /network devices and help maintain the security settings at compliant level with Specific Security Standards. • Perform regular monitoring of patch compliance of the assets in the network, Analyze Patch Advisories and provide remediation steps for the stakeholders. • Performing comprehensive review and threat adversary modeling for web applications. • Conduct Vulnerability Assessments, Penetration Testing, Device Hardening, Application Security Assessments, Log Review, Review of Documents, Network Monitoring and Reporting • Conduct and compile findings on new vulnerabilities, new tools for departmental use. • Create project deliverables / reports and assist the client with remediations and discussions. • Abide by the project timelines and maintain project discipline. Technical Skills Required: • Hands-on Experience in performing Network Security Assessment and vulnerability Assessment. • Good understanding of OSI layers and fundamental Operating system concepts, security settings for various flavors of Windows and Linux platforms. • Sound knowledge about Application vulnerability assessments and relevant knowledge of OWASP top 10 vulnerabilities and SANS. • Hands on knowledge on Tools: Nmap, Kali Linux, Metasploit, Armitage, Maltego, Burp Suite, Paros Proxy Nessus, nexpose, Wireshark, sqlmap etc. • Manual Penetration Testing skills and techniques are required besides automated tools and frameworks. • Familiar working with Publicly available exploits codes. • Sound knowledge about infrastructure vulnerability scans, identifying security vulnerabilities, weaknesses, threats, and assessing related risks that exists within an IT Infrastructure or business processes. • Good understanding of firewalls, Switches, and Router’s configuration settings and policies, relevant experience in performing rule base reviews and configuration reviews for network devices. Show more Show less
Responsibilities: • As part of the GRC team deliver on engagements pertaining to information security, cyber security, risk management and privacy for our customers across the globe • Responsible for managing and delivering on accounts in accordance with CyRAACS quality guidelines & methodologies. • Execute the engagement requirements, prepare reports and schedules that will be delivered to clients and other parties • Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress • Develop and maintain productive working relationships with client personnel • Prepare status updates and prepare management presentations etc. • Actively contribute to improving operational efficiency on projects & internal initiatives. • Assist in creating innovative insights for clients, adapt methods & practices to fit operational team needs, contribute to thought leadership documents and develop new methodologies. • Understand and follow workplace policies and procedures • Flexible to travel to client location for the project delivery. Desired skills: • 3-5 years experience (preferably in consulting environment) • Strong knowledge of cyber/information security concepts, risk and controls concepts • Strong knowledge of any standards such as ISO 27001/2, ISO 22301, ISO 27018, ISO 27701, PCI DSS, NIST standards on Cyber Security, HITRUST, etc. • Good knowledge of IT risk and control / audit environment • Good understanding of IT Management Frameworks such as COBIT, ITIL and regulations such as RBI Guidelines, PCI Compliance, GDPR, HIPAA] etc. • Knowledge of vulnerability management • A good understanding of IT data centre operations and a variety of technology platforms • Excellent business communication skills, proficient in reporting and documentation • Ability to deliver work within tight timescales, to budget and to a high quality • Demonstrate attention to detail • ISO 27001 Lead Auditor and Lead Implementer preferred. • CISSP, CISA, CISM certifications desirable. Show more Show less
Responsibilities: As part of the Risk Advisory team deliver on engagements pertaining to information security, cyber security, risk management and privacy for our customers across the globe Responsible for managing and delivering on accounts in accordance with CyRAACS quality guidelines & methodologies. Execute the engagement requirements, prepare reports and schedules that will be delivered to clients and other parties Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress Develop and maintain productive working relationships with client personnel Prepare status updates and prepare management presentations etc. Actively contribute to improving operational efficiency on projects & internal initiatives. Assist in creating innovative insights for clients, adapt methods & practices to fit operational team needs to contribute to thought leadership documents and develop new methodologies. Understand and follow workplace policies and procedures Flexible to travel to client location for the project delivery Desired skills: 3-5 years experience (preferably in consulting environment) Strong knowledge of cyber / information security concepts, risk and controls concepts Strong knowledge of any standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI DSS, NIST standards on Cyber Security, HITRUST, etc. Good knowledge of IT risk and control / audit environment Good understanding of IT Management Frameworks such as COBIT, ITIL and regulations such as RBI Guidelines, PCI Compliance, GDPR, HIPAA] etc. Knowledge of vulnerability management A good understanding of IT data center operations and a variety of technology platforms Excellent business communication skills, proficient in reporting and documentation Ability to deliver work within tight timescales, to budget and to a high quality Demonstrate attention to detail ISO 27001 Lead Auditor and Lead Implementer preferred. Conceptual knowledge of domains in CISSP, CISA, CISM etc. Show more Show less
Job Title: Project Management Officer (PMO) Location: Dombivli, Mumbai Note: · Looking only for candidates who can join within 30 days. Outstation candidates must be willing to relocate. · Candidate for this role will be working on client project at the client’s office in Dombivli, Mumbai. The PMO will be responsible for overseeing and streamlining the delivery of security testing engagements—specifically for Payment Gateway (PG) clients—ensuring timely delivery, resource optimization, effective coordination with stakeholders, and adherence to compliance and quality standards. This role bridges the gap between the technical testing team and business stakeholders to ensure smooth execution of projects. Qualifications: MBA or BBA with 2-5 years' experience working in project management for IT/ software industry. Hands on experience with project management tools such as Zoho helpdesk or Zoho Projects, is a must. · Candidate mandatorily should have project management certifications such as PMI-ACP or CAPM or PMP or similar. Background in cybersecurity would be preferred. Job description Project Planning & Tracking Maintain and update project trackers for multiple PG security testing engagements. Monitor project milestones, deadlines, and deliverables. Track actual vs. planned timelines and raise alerts on delays or deviations. Ensure daily/weekly status reporting from security consultants is accurate and up to date. Track daily utilization, workload distribution, and resource conflicts. Maintain visibility into pipeline projects to plan for resource ramp-up/down. Serve as a point of contact for internal and external stakeholders for project-related queries and escalations. Set up governance calls, circulate agendas, track MOMs, and follow up on action items. Communicate progress, risks, and dependencies to clients in a structured and timely manner. Ensure projects follow standardized security testing workflows (web, API, mobile, infra). Track closure of client queries, validations, and retesting requests. Own the preparation and maintenance of client-facing dashboards (project status, vulnerability metrics, SLA adherence). Track daily task sheet updates from consultants and prepare weekly/monthly performance summaries. Highlight red flags and recommend corrective actions proactively. Analyze project data to identify trends, insights, and areas for improvement Establish and maintain effective communication channels with stakeholders to ensure alignment and transparency. Facilitate stakeholder meetings, and presentations to gather requirements and provide project updates. Manage stakeholder expectations and address stakeholder concerns in a timely manner. Requirements and skills Proven work experience as a Project Management Officer or similar role Strong leadership skills and stakeholder management skills Strong analytical and problem-solving skills Good written and verbal communication skills Strong attention to details and technicalities Excellent organizational and technical abilities Good interpersonal and multi-tasking skills Relevant training and/or certification Show more Show less
Cybersecurity Sales Bangalore Key Responsibilities: Set and track sales targets , ensuring alignment with company goals. Develop and implement effective sales strategies & processes to maximize productivity, conversion rates. Monitor key performance metrics, analyze sales data, and provide actionable insights to improve performance. Drive customer acquisition & retention through proactive engagement and relationship-building. Collaborate with marketing, product, and customer success teams to optimize lead generation and customer experience. Conduct regular sales training sessions to enhance product knowledge and sales techniques. Utilize CRM tools to track sales activities, pipeline management , and reporting. Address customer inquiries and resolve escalations to ensure satisfaction. Stay updated with industry trends and market conditions to adjust strategies accordingly. Qualifications & Skills: Sales experience of 5:12 years . Proven experience as an Inside Sales Manager or similar sales leadership role. Strong leadership and team management skills. Excellent communication, negotiation , and interpersonal skills. Ability to work in a fast-paced, target-driven environment. Strategic thinker with a problem-solving attitude. Strong organizational and time management skills. Show more Show less
Cybersecurity - Project Management Officer (PMO) Dombivli, Mumbai Note: Looking only for candidates who can join within 30 days . Outstation candidates must be willing to relocate. Candidate for this role will be working on client project at the client’s office in Dombivli, Mumbai. 5 days WFO, Saturday WFH . Job Overview: The PMO will be responsible for overseeing & streamlining delivery of security testing engagements— specifically for Payment Gateway (PG) clients. Ensuring timely delivery, resource optimization, effective coordination with stakeholders and adherence to compliance & quality standards. This role bridges the gap between the technical testing team & business stakeholders to ensure smooth execution of projects. Qualifications: MBA or BBA with 2-4 years ’ experience working in project management for IT/ software industry. Hands on experience with project management tools such as Zoho helpdesk or Zoho Projects, is a must. Candidate should have project management certifications such as PMI-ACP or CAPM or PMP or similar (mandatory). Background in cybersecurity would be preferred. Job description: Project Planning & Tracking Maintain and update project trackers for multiple PG security testing engagements. Monitor project milestones, deadlines, and deliverables. Track actual vs. planned timelines and raise alerts on delays or deviations. Ensure daily/weekly status reporting from security consultants is accurate and up to date. Track daily utilization, workload distribution, and resource conflicts. Maintain visibility into pipeline projects to plan for resource ramp-up/down. Serve as a point of contact for internal and external stakeholders for project-related queries and escalations. Set up governance calls, circulate agendas, track MOMs, and follow up on action items. Communicate progress, risks, and dependencies to clients in a structured and timely manner. Ensure projects follow standardized security testing workflows (web, API, mobile, infra). Track closure of client queries, validations, and retesting requests. Own the preparation and maintenance of client-facing dashboards (project status, vulnerability metrics, SLA adherence). Track daily task sheet updates from consultants and prepare weekly/monthly performance summaries. Highlight red flags and recommend corrective actions proactively. Analyze project data to identify trends, insights, and areas for improvement Establish and maintain effective communication channels with stakeholders to ensure alignment and transparency. Facilitate stakeholder meetings, and presentations to gather requirements and provide project updates. Manage stakeholder expectations and address stakeholder concerns in a timely manner. Technical Skills: Project Tools: Jira, MS Project, Smartsheet, ServiceNow (GRC module) Security Tools (basic familiarity): Qualys, Nessus, Rapid7, Tenable Documentation & Reporting: MS Excel (pivot, charts), PowerPoint, Power BI or similar. Requirements and skills Proven work experience as a Project Management Officer or similar role Strong leadership skills and stakeholder management skills Strong analytical and problem-solving skills Good written and verbal communication skills Strong attention to details and technicalities Excellent organizational and technical abilities Good interpersonal and multi-tasking skills Relevant training and/or certification Show more Show less
Cybersecurity Sales, Bengaluru Key Responsibilities: Set and track sales targets , ensuring alignment with company goals. Develop and implement effective sales strategies & processes to maximize productivity, conversion rates. Monitor key performance metrics, analyze sales data, and provide actionable insights to improve performance. Drive customer acquisition & retention through proactive engagement and relationship-building. Collaborate with marketing, product, and customer success teams to optimize lead generation and customer experience. Conduct regular sales training sessions to enhance product knowledge and sales techniques. Utilize CRM tools to track sales activities, pipeline management , and reporting. Address customer inquiries and resolve escalations to ensure satisfaction. Stay updated with industry trends and market conditions to adjust strategies accordingly. Qualifications & Skills: Sales experience of 5~12 years . Proven experience as an Inside Sales Manager or similar sales leadership role. Strong leadership and team management skills. Excellent communication, negotiation , and interpersonal skills. Ability to work in a fast-paced, target-driven environment. Strategic thinker with a problem-solving attitude. Strong organizational and time management skills.
🔍 We're Hiring: VAPT Consultants (2–3 Years Experience) 📍 Location: Navi Mumbai 🕒 Experience: 2–3 Years 📅 Join Date: Notice period of 30 days max Are you passionate about cybersecurity & ethical hacking? Do you have hands-on experience in identifying & mitigating security vulnerabilities across networks, applications & infrastructure? If yes, we want to hear from you! We're looking for VAPT Consultants with 2–3 years of experience to join our growing security team. You’ll play a key role in strengthening our clients’ cybersecurity posture through detailed assessments, real-world exploitation techniques & actionable remediation guidance. What You'll Do: ✅ Conduct vulnerability assessments & penetration testing (web, mobile, network, cloud) ✅ Prepare detailed reports with findings and mitigation steps ✅ Collaborate with development and infrastructure teams to improve security ✅ Stay updated with the latest security threats, tools, and trends What We're Looking For: 🔐 2–3 years of hands-on VAPT experience 🛠️ Proficiency with tools like Burp Suite, Nessus, Metasploit, Nmap, etc. 📜 Knowledge of OWASP Top 10 and secure coding practices 🎓 Certifications like OSCP, CEH, eWPTX, eJPT, CRTP, CRTA, PNPT or equivalent (preferred but not mandatory) 🤝 Strong communication & reporting skills Why Join Us? 🚀 Work with a passionate and skilled cybersecurity team 🌱 Continuous learning and certification support 🌐 Diverse projects across industries 🏆 Growth-oriented, inclusive culture If you're ready to make an impact in the cybersecurity space, send me your resume at kshitij.sinha@cyraacs.com Know someone who fits the bill? Tag them below or share this post! #Hiring #CybersecurityJobs #VAPT #PenetrationTesting #EthicalHacking #InfoSecCareers #OSCP #CEH #CNSP #JoinUs #CyberJobs
Head of Service Delivery Location: Bengaluru (Primary) | Mumbai (Secondary) Experience: 15–20 years | Cybersecurity, Consulting, or Managed Services (Candidates with more than 25 years of experience will not be considered) About CyRAACS CyRAACS is a leading cybersecurity consulting firm specializing in Audits, Consulting, Offensive Security Testing and Platform enabled services. CyRAACS plays a crucial role in ensuring the cyber security posture of various Public Sector Units, Banks, FinTech, Insurance Companies, and Capital Market companies. CyRAACS is empaneled with Computer Emergency Response Team of India ( CERT-In ) for Information Security Auditing, and its Vulnerability Assessment and Penetration Testing services are accredited by CREST . Our key service lines include: Technical Services: VAPT, Red Teaming, Configuration and Code Reviews Audits & Consulting: Cybersecurity, Privacy, and Regulatory Audits Platform-Enabled Services: Compliance Management, Third-Party Risk Management, and Managed VAPT Services A key product offering of CyRAACS is an innovative AI enabled SaaS platform tailored for Cybersecurity with capabilities to simplify security and compliance for clients. We are now scaling for the next phase — expanding delivery capabilities, building leadership depth, driving operational excellence and transforming into a full-fledged platform company. Role Overview We are seeking a Head of Service Delivery to lead and scale CyRAACS’ services business across all verticals. The ideal candidate brings strong delivery governance, people leadership, and a proven record of building scalable operations in cybersecurity or consulting environments. This role requires close collaboration with the CEO, COO, Managing Director, and CTO to translate strategy into measurable execution and prepare the services organization for global growth. What You’ll Do Lead service delivery across Technical, Consulting, and Platform-Enabled Services with focus on quality, client success, and profitability. Collaborate with Sales on pricing, packaging, and go-to-market planning for services. Establish strong delivery governance — SLAs, dashboards, and performance reviews. Drive transformation through process improvement, automation, and platform adoption in partnership with the CTO. Lead CyRAACS’ global expansion strategy , developing delivery models and partnerships to support international clients. Mentor, engage, and grow a young, high-potential workforce across Bengaluru and Mumbai. Identify and develop the next generation of delivery leaders — Managers, Senior Managers, Directors, and Practice Heads. Ensure adherence to regulatory and client compliance expectations in all engagements. Own delivery metrics across quality, client satisfaction, utilization, and transformation outcomes. What We’re Looking For 15–20 years of experience in cybersecurity, consulting, or managed services. 3–4 years of hands-on experience dealing with regulatory requirements, audits, or compliance — as a consultant, auditor, or advisor. Prior experience in scaling teams and delivery organizations (100+ professionals). Proven success in transformational roles — process optimization, technology adoption, or delivery model redesign. Strong exposure to Indian and global clients (BFSI, IT/ITES, digital enterprises). Startup or growth-stage experience is a strong plus. Ability to lead and motivate multi-generational teams with empathy and clarity. Skills That Matter Strategic and operational leadership Delivery governance and performance management People development and engagement Client success and stakeholder management Process transformation and automation Business acumen and P&L awareness Strong communication and executive presence Preferred Qualifications Bachelor’s or Master’s degree in Engineering, Computer Science, or Information Security. Certifications such as CISA, CIPM, CISM, CISSP, CRISC, PMP preferred. Executive education (IIM, ISB, or equivalent) desirable. Why CyRAACS Opportunity to shape and scale a fast-growing cybersecurity firm. Work directly with founders and senior leadership driving India’s next wave of cyber resilience. Lead a dynamic, young team building a culture of excellence and accountability. Be part of an organization blending consulting depth with platform innovation .