Penetration Testing

Teamware Solutions

3 - 8 years

5 - 7 Lacs

Bengaluru Karnataka India

Posted:11 hours ago| Platform: Foundit logo

Apply

Work Mode

On-site

Job Type

Full Time

Job Description

Key Responsibilities:
Penetration Testing:
Conduct regular
penetration testing
(manual and automated) to identify vulnerabilities in applications, networks, and systems.
Perform tests on a wide range of environments including
web applications
,
network infrastructure
,
cloud environments
, and
IoT devices
.
Simulate attacks (internal and external) to identify potential attack vectors and exploit vulnerabilities to assess the system's security.
Use various penetration testing tools such as
Metasploit
,
Burp Suite
,
Kali Linux
,
Nmap
,
Wireshark
, etc.
Vulnerability Assessments:
Identify, analyze, and assess system and application vulnerabilities.
Conduct
security assessments
to ensure proper configuration and identification of weaknesses in the environment.
Provide detailed findings and recommendations for fixing vulnerabilities based on risk and impact.
Reporting and Documentation:
Provide clear, concise, and comprehensive
penetration testing reports
, including findings, risk assessments, and actionable recommendations.
Present findings to stakeholders in a manner that is understandable to both technical and non-technical audiences.
Maintain accurate documentation of all tests, activities, and findings for regulatory compliance and auditing purposes.
Collaboration and Support:
Work closely with
development teams
and
IT operations
to assist in remediation efforts and to verify that identified vulnerabilities are addressed.
Assist in creating security policies and best practices to ensure the organization's security posture remains robust.
Provide expert advice and support during
security incident investigations
and help with
incident response
.
Security Research and Continuous Learning:
Stay updated with the latest
penetration testing methodologies
, security vulnerabilities, and emerging threats.
Participate in
bug bounty programs
and
Capture The Flag (CTF)
challenges to sharpen skills and remain informed on current attack vectors and exploits.
Contribute to the development and improvement of internal
penetration testing frameworks
.
Compliance and Risk Management:
Ensure that penetration testing activities comply with internal security policies and relevant industry regulations (e.g.,
ISO 27001
,
GDPR
,
NIST
,
PCI DSS
).
Provide input and recommendations on security architecture and assist with compliance audits and assessments.
Collaborate with the security team to develop strategies for managing identified risks and vulnerabilities.
Required Qualifications:
Bachelor's degree
in
Computer Science
,
Information Security
,
Network Security
, or a related field, or equivalent practical experience.
3+ years
of experience in
penetration testing
,
ethical hacking
, or cybersecurity roles.
Proven experience with common penetration testing tools (e.g.,
Burp Suite
,
Metasploit
,
Nmap
,
Wireshark
,
OWASP ZAP
).
Strong knowledge of
network protocols
(e.g.,
TCP/IP
,
DNS
,
HTTP
),
web application security
, and
network security
.
Experience with
cloud security
(e.g.,
AWS
,
Azure
,
Google Cloud
).
Solid understanding of
vulnerability management
and
risk assessments
.
Experience with various operating systems including
Linux
,
Windows
, and
macOS
.
Understanding of
web application firewalls
(WAF) and security features like
SSL/TLS
,
HTTP headers
, and
authentication mechanisms
.
Familiarity with
ethical hacking standards
and
OWASP Top 10
.
Ability to effectively communicate security findings to both technical and non-technical stakeholders.

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.