18 Gwapt Jobs

Key Responsibilities: Conduct black-box, grey-box, and white-box penetration tests across web apps, APIs, networks, and mobile platforms. Perform manual vulnerability verification and risk assessments. Collaborate with IT and DevOps teams for remediation and secure SDLC practices. Simulate advanced threat actor behaviors and lateral movement. Prepare detailed reports and present findings to stakeholders. Utilize tools like Burp Suite, Metasploit, Nmap, Wireshark, Fortify, Veracode, etc. Script in Python, Bash, or PowerShell to build/extend tools. Apply knowledge of OWASP Top 10, SANS 25, CVSS, and cloud security (AWS/Azure/GCP). Mandatory Certification (any one): Burp Suite Certified Profess...

KPMG Global Services KPMG Global Services (KGS) was set up in India in 2008. It is a strategic global delivery organization, which works with more than 50 KPMG member firms to provide a progressive, scalable and customized approach to business requirements The KGS journey has been one of consistent growth, with a current employee count of nearly 10,000 operating from four locations in India Bengaluru, Gurugram, Kochi and Pune, providing a range of Advisory and Tax-related services to member firms within the KPMG network. As part of KPMG in India, we were ranked among the top companies to work for in the country for four years in a row by LinkedIn, and recognized as one of the top three emplo...

Role Overview: You will be part of the cybersecurity team at Plante Moran, assisting in performing testing and reviews for multiple client projects. Your role will involve tasks such as penetration testing, vulnerability assessments, social engineering assessments, and technical security configuration reviews. You will be responsible for preparing reports, communicating observations and discrepancies internally, and collaborating with other team members to coordinate client projects. Key Responsibilities: - Assist the US cybersecurity team in performing testing or reviews for multiple client projects which may include: - Penetration testing (e.g. external or internal network, web application...

Company Description Quasar Cyber Tech (QCT) is a fast-moving cybersecurity startup building next-gen offensive security capabilities. If you love breaking things the right way, mentoring juniors, and shipping crisp, client-ready reportslets talk. What you&aposll do Plan & execute network, web, and API penetration tests (black/grey/white box). Lead/red-team style engagements (ATT&CK-aligned), exploit development & PoCs. Abuse auth flows (OAuth/JWT/SAML), test modern APIs (REST/GraphQL), cloud entry points. Run internal/external VA/PT , identify root causes, and drive remediation guidance . Write and review reports with clear risk, impact, CVSS, and reproducible steps. Mentor interns/juniors; ...

Strategic Planning: Align application security initiatives with business goals; refine Product Security processes and tools. Technical Leadership: Stay updated on the latest trends and advancements in application security and apply them to continually improve the organizations security program. Recommend mitigations for vulnerabilities; manage third-party and open-source software risk. Architecture and Design: Review application designs for security best practices. Design, enhance, and advocate for the threat modelling process. Conduct threat modelling and advise product teams on implementing appropriate security controls. Security Reviews: Conduct security assessments throughout the develop...

You will be responsible for performing automated testing of running applications and static code (SAST, DAST). Additionally, you will conduct manual application penetration tests on various platforms such as web applications, internal applications, APIs, internal and external networks, and mobile applications to identify and exploit vulnerabilities. Experience in mobile application testing, Web application pen testing, application architecture, and business logic analysis would be advantageous. You will need to utilize application tools like AppScan, NetsSparker, Acunetix, Checkmarx, Veracode, BurpSuite, OWASP ZAP, and Kali Linux to carry out security tests and should be capable of explainin...

Key Responsibilities: Conduct application-level security testing (web, mobile, APIs) including penetration testing and vulnerability assessments Identify and exploit vulnerabilities to assess risk and impact Perform static (SAST) and dynamic (DAST) code analysis using automated tools Validate and document security findings with detailed proof-of-concept and risk ratings Collaborate with development and QA teams to drive secure software development practices Assist in threat modeling and security requirements gathering for new features Ensure compliance with industry security standards (OWASP Top 10, SANS 25, etc.) Track and follow up on security issues until resolution Stay current on securi...

Support asset development, process establishment. Conducting application security assessments (web, mobile, web service, Infra etc.). These assessments involve manual testing and analysis as well as the use of automated application vulnerability scanning/testing tools such as Burp Suite Professional and/or code review tools such as HCL AppScan/HP Fortify or CMx. We expect candidate to have experience doing similar assessments, candidate can be trained on any proprietary assessment methodology. Mandatory: 5+ years of strong Application Security experience in S-SDLC Code Review, Vulnerability Assessment, Penetration Testing. Web Service/API security testing Hands on experience into Mobile appl...

Greetings potential candidate, We are looking for a Security Assessment & Compliance Specialist with 3-6 years of experience to join our team at Netsach, a Cyber Security Company based in Dubai. As a Security Threat Assessment & Compliance Specialist, you will be responsible for conducting testing on bank installations using focused threat-based methodologies to identify vulnerabilities, enhance Cyber readiness, and ensure security controls and system configurations adhere to compliance standards. Your role will involve collecting open source intelligence on threats, developing Cyber assessment plans, assessing The bank group installations & controls, and providing insight on IT technology a...

Greetings, We are looking for a Security Assessment & Compliance Specialist with 3-6 years of experience to join our team at Netsach, a Cyber Security Company in Dubai. As a Security Threat Assessment & Compliance Specialist, your role will involve conducting testing for bank installations using threat-based methodologies to identify vulnerabilities, improve Cyber readiness, and review security controls and system configurations across IT systems to ensure security posture and compliance. Your responsibilities will include collecting open-source intelligence on threats and vulnerabilities related to the bank's technology stack, participating in event planning stages to develop Cyber assessme...

As part of our management consulting team in India, Mumbai, you will play a crucial role in addressing our client's diverse business needs. Whether it's Cybersecurity, Information Technology, or any other area, you will be instrumental in our integrated solution approach aimed at facilitating growth, optimizing resources, and managing costs and risks effectively. At Plante Moran, we take pride in providing consultative services to clients as they navigate challenges and explore new possibilities. Diversity, equity, and inclusion are fundamental values for us, ensuring that every team member has an equal opportunity to thrive in an inclusive environment while embracing their individual identi...

Job Title: WebPT P1 - Consultant Location: Bangalore & Pune (Hybrid Role) Contract Duration: 6 Months Roles & Responsibilities: Perform automated testing of running applications and static code (SAST, DAST). Conduct manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: Web applications Internal applications APIs Internal and external networks Mobile applications Experience in one or more of the following is a plus: Mobile application testing Web application pen testing Application architecture Business logic analysis Work on application tools to perform security tests, including: AppScan NetsSparker Acunetix Checkmarx Veracode BurpSuite...

We are all different, yet we all use our unique contributions to serve patients. This role has a strong focus on ensuring the organizations infrastructure, applications, and systems are secure from external and internal threats. This role is responsible for conducting authorized security tests on IT infrastructure to evaluate the strength of its systems against potential cyberattacks. A variety of automated tools and manual techniques are leveraged to simulate real-world attacks. The penetration tester then works with the organization to prioritize, remediate and report on identified issues, strengthening the overall security posture. Basic Qualifications: Bachelor s degree with6 -8 years of...

Web and Network PT Consultant Roles & responsibilities Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs, internal and external networks, and mobile applications Plan and execute network penetration testing and Red teaming assessments to simulate real-world attack scenarios. Perform manual network and application penetration tests on internal network, Active Directory environment, web applications. Perform social engineering assessment to assess the security awareness and physical security controls of the organization. Ability to independently research for new vulnerabilities in ...

Roles & responsibilities Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs, internal and external networks, and mobile applications Plan and execute network penetration testing and Red teaming assessments to simulate real-world attack scenarios. Perform manual network and application penetration tests on internal network, Active Directory environment, web applications. Perform social engineering assessment to assess the security awareness and physical security controls of the organization. Ability to independently research for new vulnerabilities in systems and software and modif...

Roles & responsibilities Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs, internal and external networks, and mobile applications Plan and execute network penetration testing and Red teaming assessments to simulate real-world attack scenarios. Perform manual network and application penetration tests on internal network, Active Directory environment, web applications. Perform social engineering assessment to assess the security awareness and physical security controls of the organization. Ability to independently research for new vulnerabilities in systems and software and modif...

Roles & responsibilities Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs, internal and external networks, and mobile applications Plan and execute network penetration testing and Red teaming assessments to simulate real-world attack scenarios. Perform manual network and application penetration tests on internal network, Active Directory environment, web applications. Perform social engineering assessment to assess the security awareness and physical security controls of the organization. Ability to independently research for new vulnerabilities in systems and software and modif...

Roles & responsibilities • Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs, internal and external networks, and mobile applications • Plan and execute network penetration testing and Red teaming assessments to simulate real-world attack scenarios. • Perform manual network and application penetration tests on internal network, Active Directory environment, web applications. • Perform social engineering assessment to assess the security awareness and physical security controls of the organization. • Ability to independently research for new vulnerabilities in systems and software...