VAPT Engineer

About ACPL (www.acpl.com)

We at ACPL are Cyber Security specialists and help corporates with their complete cycle of setting up the Cyber security platform. Right from selecting the adaptable security tools to the deployment of the same and then providing dedicated cybersecurity services.

Established in 1990, ACPL is the developer of India’s first antivirus software “SmartDog”. We offer our services and solutions by integrating complex technologies offered by the leading IT companies through strategic partnerships. Our solutions and services are majorly focused on the most challenging industry verticals like BFSI, Manufacturing, Telecommunication, Retail, Healthcare, IT/ ITES, Power, Media Education, Distribution and more.

We are $70 million company with PAN India presence with services across ASIA and a branch office in Singapore. We are a team of 300+ highly qualified professionals having certifications like CISSP , CISA , GICH etc.

Apart from winning various Industry awards and recognitions ACPL is 100% RBA Compliant and a certified “Great place to work”.

Job Description

Below are the technologies the applicant should have experience in:

• Breach and Attack Simulation / VAPT, and
• Cloud-Native Application Protection Platform (CNAPP)

Experience: 2–3 Years

Good Communication Skills - Mandatory

Key Responsibilities

• Conduct Vulnerability Assessment and Penetration Testing (VAPT) for web applications, cloud workloads, and network infrastructure.
• Perform Breach and Attack Simulation (BAS) to assess security posture.
• Work on Cloud-Native Application Protection Platforms (CNAPP) to secure applications and workloads across multi-cloud and containerized environments.
• Identify, analyze, and document vulnerabilities and misconfigurations, providing remediation guidance to development and operations teams.
• Collaborate with SOC, Cloud, and DevOps teams to improve detection and prevention capabilities.
• Prepare technical reports and present findings to internal stakeholders and clients.
• Stay updated with emerging threats, cloud-native attack techniques, and security best practices.

Required Technical Skills

• Hands-on experience in BAS tools (e.g., Picus, Cymulate, or others).
• Strong knowledge of VAPT methodologies, OWASP Top 10, SANS Top 25, and MITRE ATT&CK framework.
• Experience with CNAPP platforms.
• Familiarity with cloud platforms (AWS, Azure, GCP) and their native security controls.
• Good knowledge of security testing tools (e.g., Burp Suite, Nessus, Nmap, Metasploit).
• Basic scripting skills in Python/PowerShell/Bash for automation of security tasks.
• Knowledge of compliance standards (CIS Benchmarks, NIST, ISO 27001, PCI-DSS, etc.)

Preferred Certifications (Good to Have)

• CEH, OSCP.
• CNAPP/Cloud Security certifications.
• Any Breach & Attack Simulation vendor certifications.

Competency:

VAPT, CNAPP, OWASP, BAS, SANS, Cloud, Burp suite, Nessus, Nmap

Job Type: Full-time

Pay: ₹400,000.00 - ₹800,000.00 per year

Work Location: In person