5653 Penetration Testing Jobs - Page 44

Position Title: Associate Consultant Security Testing Exp:5+ yrs Location: Bangalore (Work from Office) Type: Full-Time Qualifications & Requirements: Bachelors degree in Information Security, Cybersecurity, Computer Science, or a related field. Familiarity with penetration testing tools (e.g., Burp Suite, Nessus, Metasploit, OWASP ZAP). Understanding of common web and mobile application vulnerabilities as outlined in OWASP Top Ten. Knowledge of network security concepts and protocols. Strong analytical skills with the ability to identify, evaluate, and prioritize risks. Excellent communication and report-writing skills to convey technical findings to non-technical stakeholders. Relevant cer...

Power Platform development and administration. Knowledge and experience implementing PowerPlatform components (PowerApps. Power Automate) Experience with creating PowerAutomate flows for process transformation Knowledge of Power Platform security basics, experience in setting up environments, Compliance and Licensing Comfortable with RESTAPIs & using API customconnectors within PowerApps Developing and Performance tuning of visual reports, dashboards and KPI scorecards on Power BI as per requirement specification. Assist with designing, creating, and implementing custom visualizations and outputs that communicate complex analytic insights to senior executive level audience Deep understanding...

1. Comprehensive Penetration Testing Execute penetration tests across web apps, APIs, thick clients, networks, cloud, and ICS/SCADA systems using industry-standard tools. 2. Tool & Technique Development Build and enhance internal tools and methodologies for testing and vulnerability assessments; stay current with emerging threats and exploits. 3. Vulnerability Analysis & Reporting Analyze findings using CVSS, assess risks, recommend mitigations, and communicate results clearly to technical and non-technical audiences. 4. Compliance & Configuration Reviews Perform reviews against CIS Benchmarks and ensure alignment with corporate security policies and standards. 5. Security Evaluation & Colla...

Tool Development and Automation: Design and develop automation solutions to improve SOC efficiency, with a focus on Content Delivery Networks (CDNs), Web Application Firewalls (WAFs), and Splunk integrations. Build tools that enable analysts to detect, investigate, and respond to incidents faster and with greater accuracy. Threat Detection and Mitigation Solutions: Create detection algorithms and response playbooks for incidents stemming from bot traffic, scanners, malicious actors, and anomalies in customer traffic. Implement solutions that prioritize incidents and reduce alert noise while maintaining high accuracy. Access Control and IP Reputation Monitoring: Engineer and maintain systems ...

Description Conduct regular security risk assessments for web applications, APIs, and underlying cloud infrastructure (AWS preferred). Manage the vulnerability management lifecycle identify, validate, track, and remediate findings using tools like Snyk, AWS Inspector, or internal scanning utilities. Collaborate with development and QA teams to embed secure coding standards and automated security checks into CI/CD pipelines. Perform threat modeling, data flow analysis, and impact assessments for new product features and architectural changes with Penetration Testing tools preferably Kalilinux Monitor application and infrastructure security logs and alerts to detect anomalies, respond to incid...

Responsibilities Perform VAPT for web, mobile (Android/iOS), and infrastructure systems. Manage vulnerabilities per ISMS and compliance standards. Document TTPs used in assessments. Use SAST, DAST, and open-source security tools. Collaborate with tech teams to mitigate risks. Contribute to implementing new security benchmarks. Preferred candidate profile Strong knowledge of CI/CD, DevSecOps, and security automation. Experience in application security reviews, code reviews, and SDLC security. Hands-on with AWS security (IAM, VPC, CloudTrail, Encryption, etc.). Familiarity with cloud-based microservices and Kubernetes security. Red teaming, EDR, WAF, and security monitoring experience preferre...

4 to 8 years of experience conducting Application Security assessments Experienced in conducting Manual and Automated DAST for Web, API & Thick client covering OWASP Top 10 Experienced in conducting Manual code review Experienced in Mobile VAPT (Both static and Dynamic) Knowledge of Infra VAPT or at least VA and configuration review Knowledge in Container / Docker security / Cloud Audit is a plus Certifications such as CEH, CRTP, OSCP is preferred Good communication skills, ability to explain vulnerabilities to business users in simple terms.

Job Responsibility: 48 years of post-qualification experience with strong working knowledge on Manual Security code review. Strong knowledge on manual secure code review against common programming languages (Java, C#). Minimum three (3) years of recent experience working with application tools to perform security tests: AppScan, NetsSparker, Acunetix, Checkmarx, Veracode, BurpSuite, OWASP ZAP, Kali Linux, or equivalent. Minimum three (3) years of performing manual penetration testing and code review against web apps, mobile apps, and APIs. Minimum three (3) years of working with technical and non-technical audiences in reporting results and lead remediation conversations. Preferred one year ...

Job Summary We are seeking a highly motivated Application Security Engineer to join our security team. The ideal candidate will have hands-on experience in conducting security assessments for web, mobile, and thick client applications, as well as reviewing source code for vulnerabilities. This role involves close collaboration with development teams to ensure applications are secure by design and compliant with best practices. Key Responsibilities Conduct security assessments of web, mobile, thick client applications, and APIs. Perform source code reviews and software composition analysis (SCA) to identify vulnerabilities. Collaborate with development and DevOps teams to remediate identified...

Job Summary We are seeking a highly motivated Application Security Engineer to join our security team. The ideal candidate will have hands-on experience in conducting security assessments for web, mobile, and thick client applications, as well as reviewing source code for vulnerabilities. This role involves close collaboration with development teams to ensure applications are secure by design and compliant with best practices. Key Responsibilities Conduct security assessments of web, mobile, thick client applications, and APIs. Perform source code reviews and software composition analysis (SCA) to identify vulnerabilities. Collaborate with development and DevOps teams to remediate identified...

INTRODUCTION: We are seeking a talented individual to join our team as a Principal Software Developer. The Principal Software Developer is self-driven and has a holistic, big picture mindset in developing enterprise solutions. In this role, he/she will be responsible for designing modern domain-driven, event-driven Microservices architecture to host on public Cloud platforms (AWS) and integration with modern technologies such as Kafka for event management/streaming, Docker & Kubernetes for Containerization. You will also be responsible for developing and supporting applications in Billing, Collections, and Payment Gateway within the commerce and club management Platform include assisting wit...

Key Responsibilities Plan and execute advanced Red Team operations and adversary emulation exercises. Conduct comprehensive penetration tests Web, API (REST & GraphQL), Infrastructure, and Mobile (Android & iOS). Perform exploit development, privilege escalation, lateral movement, and bypass security controls. Develop and deploy custom payloads and simulate APT-style attacks. Collaborate with Blue Teams to strengthen incident response and threat detection. Use tools such as Metasploit, Cobalt Strike, Burp Suite, Nmap, Nessus, Wireshark, BloodHound, etc. Conduct risk assessments, identify vulnerabilities, and provide remediation strategies. Integrate and automate Red Team training using cyber...

We are seeking an experienced and highly skilled Penetration Tester with expertise in mobile application security, specifically for both Android and iOS platforms. As a Senior Penetration Tester, you will be responsible for identifying and exploiting vulnerabilities in mobile applications, networks, APIs, and other critical systems. Your primary responsibility will be performing thorough security assessments, including reverse engineering, malware analysis, and incident forensics, to ensure the security and resilience of mobile applications and systems. The ideal candidate should have hands-on experience with penetration testing tools, mobile application testing, and advanced exploitation te...

Responsibilities: Execute shell scripts for seamless automation and system management. Implement infrastructure as code using Terraform for AWS, Kubernetes, Helm, kustomize, and kubectl. Oversee AWS security groups, VPC configurations, and utilize Aviatrix for efficient network orchestration. Contribute to Opentelemetry Collector for enhanced observability. Implement microsegmentation using AWS native resources and Aviatrix for commercial routes. Enforce policies through Open Policy Agent (OPA) integration. Develop and maintain comprehensive runbooks for standard operating procedures. Utilize packet tracing for network analysis and security optimization. Apply OWASP tools and practices for r...

About the Role: We are seeking a highly skilled Penetration Tester (Ethical Hacker) to evaluate the security posture of our applications, systems, and networks. The ideal candidate will proactively identify vulnerabilities, exploit weaknesses in a controlled environment, and provide actionable recommendations to strengthen security. Key Responsibilities: Conduct penetration tests on web applications, networks, cloud environments, APIs, mobile applications, and infrastructure. Identify, exploit, and report security vulnerabilities and weaknesses. Perform vulnerability assessments and risk analysis, prioritizing remediation actions. Develop and execute red team exercises and simulate advanced ...

About the Role: We are seeking a skilled and detail-oriented Cyber Security Analyst to help safeguard our organizations information systems, networks, and data. The ideal candidate will have hands-on experience in monitoring, analyzing, and responding to security incidents while ensuring compliance with security policies and industry standards. You will play a critical role in maintaining the confidentiality, integrity, and availability of our digital assets. Key Responsibilities: Monitor, detect, and respond to security events and incidents across networks, systems, and applications. Perform vulnerability assessments and assist in remediation efforts to reduce security risks. Conduct threat...

So, what’s t he r ole all about? As a member of the Cloud Security team, a successful Cloud Security Analyst will need to be self-sufficient to collaborate effectively with multiple teams, such as Application Support, Infrastructure Operations, DevOps, Product R&D, Security teams, customers and 3 rd party auditors. This role will hold the responsibility of understanding the Cloud security policies, procedures, practices and technologies and documenting them appropriately as well as demonstrating to auditors and customers the excellent Cloud Security at NiCE. A successful candidate in this role will be able to work in production cloud environments to collect and curate evidence and explain it...

As a Security Tester, you will be pivotal in identifying and addressing security vulnerabilities in our products, applications, and infrastructure. Your role will involve designing, executing, and reporting on security testing activities to ensure compliance with industry best practices and regulatory requirements. - Design, develop, and implement security testing strategies encompassing vulnerability assessments, penetration testing, and code reviews. - Identify and document security vulnerabilities and risks, delivering comprehensive reports and recommendations for mitigation. - Contribute to the formulation and execution of security policies, standards, and procedures. - Collaborate with ...

Role Overview: As a Lead, Application Security at Capillary Technologies, you will be responsible for driving the application security function to the next level, ensuring the enhanced security of our product. You will play a crucial role in performing design consultation, architecture review, threat modeling, code review, and testing. Your expertise will be vital in developing test cases, scripts, and procedures for automated security testing as part of the CI/CD pipeline. Additionally, you will be conducting application vulnerability assessments and providing guidance on remediation based on security tooling output. Your involvement in the SDLC processes will help in increasing security re...

As a member of the Global Security Monitoring and Incident Response (MIR) team at Roche, you will play a crucial role in ensuring the safety of our networks and users from evolving threats. Your expertise in penetration testing will be instrumental in defining and prioritizing security activities to safeguard our proprietary information, patient data, and computer systems. Here is a summary of the key responsibilities and qualifications for the position: Responsibilities: - Define and prioritize penetration testing activities and requirements as the Product Owner within an agile framework. - Use your penetration testing knowledge to evaluate and prioritize security issues identified through ...

Role Overview: Imagine what you could accomplish by joining Apple's B2B team as a Sr. Security Engineer. At Apple, new ideas quickly become groundbreaking products and services. The team manages critical integrations with supply chain partners and business customers. As a Sr. Security Engineer, you will contribute to the development, implementation, and maintenance of security measures within the B2B platforms. This role offers a great opportunity for professional growth in the cybersecurity field. Key Responsibilities: - Code Reviews: Collaborate with application development teams to review code for security issues and ensure secure coding standards and best practices. Utilize static and dy...

Description: Securing the software development lifecycle Secure coding with PHP, for code reviews Threat Modeling Experience with web application security Experience with SAST Experience with DAST (OWASP ZAP) Knowledge of Drupal would be beneficial Knowledge of CloudFlare WAF Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade :C Level :To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) :No Remote work possibility :Yes Global Role Family :To be defined Local Role Name :To be defined Local Skills :software development life cycle;secure coding;Drupal;DAST Languages Required::ENGLISH Role Rarity :To Be Defined

Description: Salesforce Customer cloud and marketing cloud security knowledge Securing the development lifecycle Threat Modeling Security Code reviews Experience with SAST (CodeScan Cloud) Experience with DAST (OWASP ZAP) Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade :C Level :To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) :No Remote work possibility :Yes Global Role Family :To be defined Local Role Name :To be defined Local Skills :software development life cycle;PHP;threat analysis Languages Required::ENGLISH Role Rarity :To Be Defined

"Experience:5+ Years Responsibilities: Conduct application onboarding into Ping SSO, configure SSO integrations, and maintain protocols such as SAML, OAuth, and OpenID Connect. Gather application requirements, configure SSO settings, and support new integrations. Perform testing, validation, and optimization of SSO integrations to ensure smooth authentication and access control. Collaborate with internal stakeholders to support SSO strategies and identity management policies. Requirements: 5+ years of experience in Ping SSO and SSO integration development. In depth knowledge of SSO protocols and experience in application onboarding and authentication configurations. "

"Seeking 8 contract resources in Hyderabad and Bangalore for performing SAST (Static application security testing), SCA (Software Composition Analysis) and DAST (Dynamic application security testing) to perform identification and remediation of vulnerabilities in Applications. About the Job:This position is a Contractor at Senior Specialist Cyber Security role for performing Application Security Testing in Cyber Security Organization. This profile will be passionate in preventing risk by performing remediation validation of vulnerabilities identified during the testing process. While doing so they will also be identifying vulnerabilities in the applications of the enterprise by configuring s...