VAPT Analyst

Job Description: VAPT Analyst

Company: Digisecuritas
Location: Chandigarh
Department: Cybersecurity
Position Type: Full-time

About Digisecuritas

Digisecuritas is a leading cybersecurity and digital risk management company focused on helping businesses protect their infrastructure, applications, and data. We deliver cutting-edge security services including VAPT, SOC, GRC, MDR, and compliance consulting.

Role Overview

The VAPT Analyst will be responsible for conducting comprehensive Vulnerability Assessment and Penetration Testing across networks, web/mobile applications, cloud environments, and APIs. The ideal candidate must be hands-on, detail-oriented, and equipped with strong analytical and reporting skills.

Key ResponsibilitiesVulnerability Assessment & Penetration Testing

• Perform VAPT on web applications, mobile apps, networks, cloud, APIs, and infrastructure.
• Conduct manual and automated testing to identify security vulnerabilities.
• Exploit vulnerabilities ethically to determine risk impact.
• Perform security configuration review on servers, firewalls, and cloud platforms.

Reporting & Documentation

• Prepare detailed technical reports with POC, impact analysis, and remediation steps.
• Create executive-level summaries for clients and management.
• Track vulnerabilities and validate fixes post-remediation.

Tools & Technologies

• Use industry-standard tools such as:
• Burp Suite, Nmap, Nessus, Metasploit, OWASP ZAP, Kali Linux, Wireshark, MobSF, Postman, etc.

Compliance & Standards

• Ensure assessments align with OWASP Top 10, SANS 25, ISO 27001, NIST, CIS benchmarks.
• Support audits, compliance checks, and internal security processes.

Client Interaction

• Participate in client discussions, requirement gathering, and scoping calls.
• Explain vulnerabilities and remediation to technical/non-technical stakeholders.

Required Skills & Qualifications

• Bachelor’s degree in Computer Science / IT / Cybersecurity (or equivalent).
• 1–4 years of experience in VAPT or cybersecurity assessment roles.
• Strong knowledge of:
• Web & mobile application security
• Networking concepts
• Secure coding principles
• API & cloud security basics
• Hands-on experience with security testing tools and Linux environments.
• Excellent report writing and communication skills.

Preferred Certifications (Good to Have)

• CEH / eJPT / eWPT / eCPPT
• OSCP (added advantage)
• Security+ or other relevant cybersecurity certs

Key Competencies

• Analytical & problem-solving mindset
• Attention to detail
• Ability to work under pressure and meet deadlines
• Strong documentation and communication
• Ethical and responsible approach to security testing

Why Join Digisecuritas?

• Opportunity to work on diverse cybersecurity projects
• Growth-focused culture
• Exposure to latest tools and real-world attack scenarios
• Competitive salary and performance-based incentives

Job Type: Full-time

Pay: ₹196,527.77 - ₹351,594.64 per year

Benefits:

• Paid sick time
• Paid time off

Work Location: In person