401 Oscp Jobs - Page 3

Hardware Penetration Tester - 4+yrs - Python/Firmware extraction/JTAG,UART, SPI-testing Who We Are: As the leader in cloud-managed IT and networking, Cisco connects passionate people to their mission by simplifying the digital workplace. Our impact is driven by the innovative, purposeful, and vibrant people who make up our inclusive community. When technology is intuitive and secure, our customers can focus on what matters! About The Team: Join our Device Penetration Testing team, where your expertise will directly strengthen the security of millions of Cisco devicesfrom embedded systems to global cloud platforms. Here, youll collaborate with security professionals recognized for leading har...

We are looking for a skilled Threat Hunter with expertise in Breach and Attack Simulation (BAS) to proactively identify threats and simulate attacks using modern threat frameworks. The ideal candidate will have excellent communication and documentation skills, strong analytical and problem-solving abilities, and the ability to adapt quickly to evolving threat landscapes. Roles and Responsibility Perform threat hunting using behavioral analysis, threat intel, and anomaly detection. Conduct simulations based on the MITRE ATT&CK framework. Use BAS tools and threat intel feeds to assess the environment's security posture. Communicate findings and mitigation strategies to both technical and non-t...

Your future role Take on a new challenge and apply your ethical hacking expertise in a cutting-edge field. Youll work alongside talented, collaborative, and forward-thinking teammates. You'll play a key role in safeguarding our organization's assets and enhancing our security program. Day-to-day, youll work closely with teams across the business (such as infrastructure, application owners, and third-party vendors), analyze threat intelligence reports, and develop remediation plans, among other impactful responsibilities. Youll specifically take care of vulnerability assessments, penetration testing, and implementing Secure SDLC programs, but also contribute to designing and delivering action...

Role & responsibilities 6-12 years of experience in application security, penetration testing, or related security fields. Proven expertise in securing web and mobile applications (OWASP Top 10, OWASP Mobile, etc.), APIs, and microservices architectures. In-depth experience with security testing methodologies (SAST, DAST, IAST, and penetration testing). Strong expertise in identifying and mitigating security risks in the SDLC, and integrating security into Agile/DevOps workflows. Solid understanding of common programming languages (e.g., Java, Python, .NET, JavaScript, C++, etc.) and secure coding practices. Experience with threat modeling, risk assessments, and vulnerability management proc...

Role Overview: As a Cyber Security Expert at Zilicon Network Solutions, your main responsibility will be to protect the organization's digital infrastructure by proactively identifying vulnerabilities, responding to threats, and ensuring compliance with industry-standard security practices. This role requires strong analytical abilities, technical expertise, and a deep understanding of modern cyber-attack techniques. Key Responsibilities: - Security Monitoring & Incident Response - Monitor systems, networks, and applications for unusual activity or threats. - Investigate security breaches and conduct root-cause analysis. - Respond to incidents with proper containment, eradication, and recove...

As a SOC Analyst with 8-10 years of experience, you will play a crucial role in ensuring the security of the organization by performing the following key responsibilities: - Act as an escalation point for high and critical severity security incidents, conducting thorough investigations to determine potential impact and extent of compromise. - Verify and authenticate events, alerts, and incidents reported by L1 analysts. - Analyze attack patterns, Tools, Techniques and Procedures (TTPs) to identify methods of attacks and attack life cycle. - Define, plan, implement, maintain, and upgrade security measures, policies, and controls. - Conduct in-depth investigation and correlation, working towar...

You are a strong candidate with knowledge and experience in Darknet, HUMINT, and Automation (Python). You must be a self-learner, capable of working independently with minimal assistance and utilizing online resources. Your flexibility to learn new technologies and languages will be essential for this role. Key Responsibilities: - Monitor the online cybercrime underground space and cybercriminal activities in both Clearnet & Darknet. - Identify and evaluate new data sources informing cybercrime activities and write research reports and end customer deliverables. - Engage with threat actors and automate regular tasks to minimize manual efforts. - Use advanced open-source intelligence (OSINT) ...

Skills: Source Code Review, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT) Required Skills Strong knowledge of secure coding standards (OWASP, CERT, SEI, MISRA, etc.). Experience with SAST tools (Fortify, Checkmarx, SonarQube, Veracode, etc.). Ability to review and understand complex source code across multiple languages. Familiarity with common security vulnerabilities (OWASP Top 10, CWE, SANS Top 25). Understanding of software architecture, APIs, microservices, and cloud-native development. Strong analytical and communication skills to translate findings into developer-friendly remediation steps.

Source Code Review (SCR) Source Code Review, Multiple Languages, Checkmarx, SonarQube, A (CEH/OSCP/SANS25/LPT/CEPT) We are seeking a highly skilled Source Code Review (SCR) Consultant with expertise in multiple programming languages and hands-on experience using leading code analysis tools such as Checkmarx and SonarQube. The ideal candidate should have a strong background in application security, secure coding practices, and vulnerability identification/mitigation. Candidates with certifications like CEH, OSCP, SANS25, LPT, CEPT will be given preference. Key Responsibilities Perform manual and automated source code reviews across multiple programming languages. Utilize tools such as Checkma...

Plan, execute, and document application penetration tests (black-box, grey-box, and white-box) across web applications, mobile apps (iOS/Android), and APIs. Discover vulnerabilities using manual techniques and automated tools (e.g., Burp Suite, ZAP, custom scripts); validate findings to reduce false positives. Exploit vulnerabilities when safe and appropriate (proof-of-concept exploit), and assess impact (data exposure, privilege escalation, business logic flaws). Perform threat modeling and secure code reviews (including static/dynamic analysis) for high-risk applications and features. Collaborate with development teams to explain findings, reproduce issues, and recommend remediation and mi...

(2-9) Yrs in penetration tester in technical cyber security Resource must becapable of performing Security testing forWeb, Mobile (IOS & Android) & API. knowledge of BurpSuite Professional Immediate joiner Interested send CV-sachin@assertivebs.com

Level 3 Resource Application Penetration Tester (APT) Were looking for a handson Application Penetration Tester (APT) to join our security team and lead offensive testing of web applications, mobile apps (iOS/Android), and APIs (REST/GraphQL/gRPC). Youll plan and execute manual and automated assessments, discover realworld vulnerabilities, produce clear remediation guidance, and help raise secure development practices across the organization. This role is ideal for someone who loves breaking stuff responsibly, can communicate technical risk to engineers and managers, and wants to turn security findings into practical fixes. Skills : Advanced Application Penetration Testing (Web/Mobile/API), ...

Level 3 Resource Application Penetration Tester (APT) Experience: 7-9 years Skills: Advanced Application Penetration Testing (Web/Mobile/API), BurpSuite , MIS Reporting, Certifications (CEH/OSCP/SANS25/LPT/CEPT) An Application Penetration Tester (APT) is a cybersecurity professional who simulates attacks on an organization's applications to identify and exploit vulnerabilities. Key responsibilities include conducting manual and automated security assessments on web, mobile, and API applications, creating detailed reports on findings, and collaborating with development teams to remediate security flaws. They must stay current with emerging threats, tools, and secure coding practices.

Responsibilities: Perform source code reviews (manual + automated) across diverse technologies. Utilize tools like Checkmarx, SonarQube, Fortify, or Veracode for SAST analysis. Identify, prioritize, and report security vulnerabilities with actionable remediation guidance. Collaborate with developers, architects, and security teams to improve secure coding practices. Contribute to Secure SDLC and DevSecOps initiatives. Stay updated on OWASP Top 10, SANS25, CWE, and emerging threats . Requirements: 5-6 years of experience in application security & source code review . Proficiency in multiple programming languages ( Java, .NET, Python, JavaScript, C/C++ ). Strong hands-on experience with Checkm...

Application Penetration Tester (APT)(Web/Mobile/API), BurpSuite, MIS Reporting, Certifications (CEH/OSCP/SANS25/LPT/CEPT) Level 3 Resource Application Penetration Tester (APT) We are seeking a skilled Application Penetration Tester (APT) to identify, assess, and mitigate security vulnerabilities across web, mobile, and API applications . The ideal candidate will have strong hands-on experience in penetration testing, excellent knowledge of security standards, and the ability to generate detailed MIS reports for stakeholders. This role requires proficiency with BurpSuite and other penetration testing tools, along with relevant certifications such as CEH, OSCP, SANS25, LPT, or CEPT . Key Respo...

Level 3 Resource Application Penetration Tester (APT) Were looking for a handson Application Penetration Tester (APT) to join our security team and lead offensive testing of web applications, mobile apps (iOS/Android), and APIs (REST/GraphQL/gRPC). Youll plan and execute manual and automated assessments, discover realworld vulnerabilities, produce clear remediation guidance, and help raise secure development practices across the organization. This role is ideal for someone who loves breaking stuff responsibly, can communicate technical risk to engineers and managers, and wants to turn security findings into practical fixes. Skills : Advanced Application Penetration Testing (Web/Mobile/API), ...

Level 3 Resource Application Penetration Tester (APT) Experience : 7-9 years Skills : Advanced Application Penetration Testing (Web/Mobile/API), BurpSuite , MIS Reporting, Certifications (CEH/OSCP/SANS25/LPT/CEPT) Conduct and document penetration tests on web applications, mobile apps (iOS/Android), and APIs (REST, GraphQL). Perform both manual and automated security assessments using industry-standard tools and frameworks like Burp Suite, OWASP ZAP, and custom scripts. Identify and exploit vulnerabilities such as injection flaws, cross-site scripting (XSS), authentication issues, and business logic flaws. Assess the impact of vulnerabilities, demonstrate proof-of-concepts, and perform privi...

Job Title: Cybersecurity Engineer (VAPT & PCI DSS Compliance) Company: ZedFly Innovations Pvt. Ltd. Location: Gurgaon (Work From Office) Experience: 2-4 years Job Type: Full-Time, Permanent Salary: Up to 6 LPA (based on skills and experience) + (includes fixed + variable pay) Variable Pay: Additional performance-based variable payout released every 6 months Employment Type: Full-Time Week Off: Alternate Week Off Job Description ZedFly Innovations is expanding into cybersecurity services and looking for a skilled Cybersecurity Engineer with experience in VAPT, security audits, and PCI DSS compliance documentation . This is a core role where you will perform security assessments, guide clients...

As a Security Operations Centre (SOC) Analyst, your role involves monitoring, triaging, and analyzing security events and alerts on a 24/7 basis. This includes conducting malware analysis, including reverse engineering when necessary. You will be responsible for coordinating incident response activities, troubleshooting complex issues, and collaborating with teams across a global organization. Key Responsibilities: - Monitor security events and alerts round the clock - Analyze security incidents and conduct malware analysis - Coordinate incident response efforts and troubleshoot complex issues - Understand core concepts of security incident response - Analyze email security threats and contr...

As a Security Testing professional at Lexmark India, Kolkata, you will be responsible for conducting web application security assessments and penetration tests. Your tasks will include assessing applications for issues surrounding Authentication, Authorization, User management, Session management, Data validation, and common attacks like SQL injection, Cross-site scripting, Command injection, among others. Additionally, you will assess the security aspects of Web Services design and implementation, write formal security assessment reports, participate in client conference calls, and perform vulnerability and network penetration assessments. You will also be involved in mobile applications se...

Level 3 Resource Application Penetration Tester (APT) We are seeking a skilled Application Penetration Tester (APT) with expertise in Web, Mobile, and API security testing to identify vulnerabilities and help strengthen the security posture of our applications. The role involves performing in-depth security assessments, ethical hacking, and providing actionable recommendations to mitigate risks across various digital platforms. Skills : Advanced Application Penetration Testing (Web/Mobile/API), BurpSuite, MIS Reporting, Certifications (CEH/OSCP/SANS25/LPT/CEPT)

Skills: Source Code Review, Multiple Languages, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT) 2. Level 1 Resource Source Code Review (SCR) Job Summary The Source Code Review (SCR) Professional is responsible for performing comprehensive security and quality assessments of application source code to identify vulnerabilities, coding errors, and compliance issues. The role ensures adherence to secure coding standards, best practices, and regulatory requirements, supporting the organization in building robust and secure software systems. Key Responsibilities Conduct detailed manual and automated reviews of application source code to identify security vulnerabilities, logic flaw...

Role: Perform detailed security analysis of application source code to identify vulnerabilities, weaknesses, and compliance issues Use manual and automated tools (e g , Checkmarx, SonarQube) to ensure secure coding standards are met Collaborate with developers to remediate findings and improve software security posture Skills: Source Code Review, Multiple Languages, Checkmarx, SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT) 2. Level 1 Resource Source Code Review (SCR)

Level 2 Resource Source Code Review (SCR) Experience: 5 - 6 years Skills: Source Code Review, Multiple Languages, Checkmarx , SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT) Level 1 Resource Source Code Review (SCR) Experience: 2 - 3 years Skills: Source Code Review, Checkmarx , SonarQube, Certifications (CEH/OSCP/SANS25/LPT/CEPT)

Skills: Advanced Application Penetration Testing (Web/Mobile/API), BurpSuite, MIS Reporting, Certifications (CEH/OSCP/SANS25/LPT/CEPT) Key Responsibilities Plan, scope, and execute penetration tests for web applications, mobile apps (iOS/Android), and backend APIs (REST/GraphQL/gRPC). Perform both manual and automated testing using industry-standard tools and frameworks (e.g., Burp Suite, ZAP, Frida, Objection, MobSF, HTTPie/Postman, custom scripts). Discover and exploit vulnerabilities (OWASP Top 10, API Top 10, Mobile Top 10, business logic flaws) and demonstrate impact through proof-of-concept. Conduct authenticated testing, session management analysis, and authorization testing (horizont...