Urgent Hiring || Sr Security Engineer (VAPT) || ThinkSys Inc Noida

Sr. Security Engineer Pentesting & VAPT

Location: Sector 62, Noida/Hybrid Employment Type: Fulltime (WFO/ Hybrid) Experience: 4+

Role: Individual Contributor Compensation: Competitive

About Us

ThinkSys is a distinguished player in the US market, offering a stable environment with

long-term projects and a robust client base from around the globe. Our commitment to

continuous learning ensures professional growth for our team members. We pride ourselves on

having an exceptionally low attrition rate, reflecting our supportive and engaging work culture.

Through strategic acquisitions and key mergers, we continually expand our capabilities. As a

product and service-based company, we are dedicated to delivering innovative solutions while

upholding our vision and mission of excellence. Proud to be a Microsoft Gold Partner, ThinkSys

combines industry expertise with a steadfast commitment to quality and client satisfaction.

Job Description

We are seeking a highly skilled and driven Sr. Security Engineer with a strong, hands-on

background in Penetration Testing (Pentesting) and Vulnerability Assessment and

Penetration Testing (VAPT). The ideal candidate will be adept at identifying, exploiting, and

reporting security vulnerabilities across various systems, with a primary focus on Network, web

api, and mobile. This role requires a deep understanding of attack vectors, practical experience

with leading security tools, and the ability to articulate complex technical findings into actionable

remediation strategies. While the core focus is VAPT, an understanding of security compliance

standards (SOC 2, ISO 27001, GDPR) as they relate to vulnerability management and reporting

will also be valuable.

Key Responsibilities

• Lead and execute comprehensive penetration tests on Network, web applications,

mobile applications (iOS/Android), and internal/external networks to identify security

weaknesses.

• Perform in-depth vulnerability assessments and risk evaluations across diverse client

environments, prioritizing threats based on business impact.

• Develop and deliver detailed technical and executive reports, clearly outlining discovered

vulnerabilities, their potential impact, and providing prioritized, actionable remediation

strategies.

• Actively research and stay updated with the latest exploits, attack techniques, security

tools, and industry best practices in penetration testing and vulnerability management.

• Collaborate closely with development, operations, and client teams to guide them

through vulnerability remediation processes and enhance overall security posture.

• Contribute to the continuous improvement of VAPT methodologies, tools, and processes.
• (Secondary) Assist in understanding and aligning VAPT findings with compliance

frameworks such as SOC 2, ISO 27001, and GDPR.

Required Qualifications

• 4+ years of dedicated experience in cybersecurity with a significant focus on

penetration testing and vulnerability assessment.

• Specialized in Network Penetration Testing (Manual/Automation)
• Demonstrated proficiency and hands-on experience with industry-standard VAPT tools,

including but not limited to: Burp Suite, Nmap, Metasploit, Nessus, MobSF, and

various manual testing techniques.

• Strong practical knowledge of OWASP Top 10, SANS Top 25, secure coding practices,

network protocols, and common attack vectors.

• Proven ability to identify, exploit, and document vulnerabilities in complex systems.
• Excellent report writing and presentation skills, capable of communicating technical risks

to both technical and non-technical audiences.

• Understanding of security compliance standards (SOC 2, ISO 27001, GDPR) and their

relevance to VAPT findings.

Certifications (Preferred)

• OSCP (Offensive Security Certified Professional) - Highly Valued
• Certified Red Team Professional (CRTP)
• Certified Peniteration Testing Professional(C|PENT)

Nice-to-Have Skills

• Familiarity with DevSecOps pipelines, source code reviews, or CI/CD security

integration.

• Client-facing consulting experience or strong report presentation skills.
• A genuine "Cyber Security vibe" and passion for ethical hacking.

Benefits Offered

• Flexible Work Hours.
• Work on impactful, industry-changing projects.
• Continuous learning and career growth opportunities.
• Collaborative, innovative, and inclusive environment.
• Insurance Group Medical Coverage, Employee Personal Accident, Maternity and

Paternity Leaves.

• Performance Feedback Sessions.
• Competitive Compensation.
• Rewards and Recognition Program, Employee Referral Program, Fun Events.