KPMG Global Services - Managed Services - Web PT - Consultant/ AM

KPMG Global Services

KPMG Global Services (KGS) was set up in India in 2008. It is a strategic global delivery organization, which works with more than 50 KPMG member firms to provide a progressive, scalable and customized approach to business requirements

The KGS journey has been one of consistent growth, with a current employee count of nearly 10,000 operating from four locations in India — Bengaluru, Gurugram, Kochi and Pune, providing a range of Advisory and Tax-related services to member firms within the KPMG network.

As part of KPMG in India, we were ranked among the top companies to work for in the country for four years in a row by LinkedIn, and recognized as one of the top three employers in the region for women, as well as for policies on Inclusion & Diversity by ASSOCHAM (The Associated Chambers of Commerce & Industry of India).

Furthermore, as KPMG in India, we were recognized as one of the ‘Best Companies for Millennials’ at The Millennial Max Conference 2019 presented by The LNOD Roundtable as well as ‘the Great Indian Workplace’ at the Culture Summit and Great Indian Workplace Awards 2019.

The position in discussion is with the Managed Services team, part of our Consulting team.

The KPMG Global Services (KGS) Consulting team is a diverse team of more than 6,400 professionals. We provide consulting services to KPMG Firms worldwide to support clients’ business transformation journeys across various industries. With capabilities such as Technology Enablement, Corporate Services, Customer and Operations, Cross Functional Services, Risk Services and Managed Services, our team is a varied mix of professionals with extensive skills and expertise.

Through your work, you’ll build a global network and unlock opportunities that you may not have thought possible with access to great support, vast resources, and an inclusive, supportive environment to help you reach your full potential.

Location : Bangalore

Roles & responsibilities :

• Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs and mobile applications
• Ability to independently research for new vulnerabilities in systems and software and modify and customize tools, known exploits, POCs and scripts to meet operational requirement.
• Research and stay up-to-date with the latest attack techniques, tools, and emerging threats.
• Present technical reports to clients, explaining the outcomes of the testing and providing detailed insights and recommendations.
• Collaborate effectively with cross-functional teams, including developers, IT operations, and business stakeholders to integrate security best practices seamlessly into project workflows.
• Provide mentorship and guidance to junior security staff and foster a culture of proactive security awareness within the organization.

Educational qualifications :

Masters (preferably in computer science or MCA) and/or B.E. / B. Tech (from a reputed University).

Work experience:

4– 10 years of post-qualification experience with strong working knowledge on Manual Security code review.

Mandatory technical & functional skills:

• Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs and mobile applications
• 4+ years of professional experience in cybersecurity, with a focus on Web application penetration testing.
• Strong understanding of web applications, cryptography, various operating systems and security technologies.
• Strong understanding of exploitation of Microsoft platform used in enterprise environment such as windows Servers, Active Directory Certificate Service, Azure, etc.
• Experience in one or more of the following a plus: Web application penetration testing, mobile application penetration testing application architecture and business logic analysis.
• Relevant certifications, such as GWAPT, OSCP, OSEP, CRTP, CRTO, OSWA, are strongly preferred.

Other information:

Interview process:

Does the job role involve travelling:

Does the busy season apply to this role?:

Working location: