345 Vapt Jobs - Page 5

JTSi Technologies India is looking for Application Security Engineer to join our dynamic team and embark on a rewarding career journey Analyzing customer needs to determine appropriate solutions for complex technical issues Creating technical diagrams, flowcharts, formulas, and other written documentation to support projects Providing guidance to junior engineers on projects within their areas of expertise Conducting research on new technologies and products in order to recommend improvements to current processes Developing designs for new products or systems based on customer specifications Researching existing technologies to determine how they could be applied in new ways to solve problems Reviewing existing products or concepts to ensure compliance with industry standards, regulations, and company policies Preparing proposals for new projects, identifying potential problems, and proposing solutions Estimating costs and scheduling requirements for projects and evaluating results

Your Role Evaluate software/product architecture to ensure security is embedded at the design phase. Develop cybersecurity artifacts such as threat models and lead mitigation discussions. Support engineering teams in triaging and resolving identified product vulnerabilities. Coordinate internal and external security and privacy assessments, including VAPT. Assist in formulating and implementing product security and privacy policies, standards, and procedures. Ensure compliance with defined security and privacy requirements and verify effectiveness of protection measures. Guide resolution of security audit findings and ensure timely closure. Provide strategic security risk management and advisory support for product and information security. Participate in incident response and assess risk and impact of security breaches. Review engineering changes, new services, and feature requests for security implications. Collaborate with tech leads and architects to ensure secure product development. Promote a culture of security awareness and continuous improvement across teams. Your Profile Strong experience in application, mobile, network, OS, and cloud security (experience range 7 to 15 years). Proficiency in AWS security, including AWS Solution Architect Associate and Security Specialty certifications. Hands-on expertise in static/dynamic code analysis, container security, and Kubernetes. Familiarity with security frameworks and standards like NIST 800-53, CIS/STIG, HI-TRUST, and SOC2. Knowledge of cryptography, PKI, OAUTH, 2FA, and secure software development lifecycle (SDLC).

Job Summary: We are seeking a skilled VAPT (Vulnerability Assessment and Penetration Testing) Analyst to join our team. In this role, you will be responsible for conducting comprehensive security assessments, including network penetration testing, black box testing, and vulnerability assessments. You will be working directly with our client while being employed under our payroll, ensuring a seamless and secure IT environment. Your expertise in IT project management and IT security will be crucial in managing and executing these security projects effectively. Major Objectives of the Job: Conduct network penetration testing to identify and exploit vulnerabilities. Perform black box testing to assess system security from an external perspective. Carry out thorough vulnerability assessments to pinpoint potential security threats. Operate as a penetration tester to ensure the robustness of security measures. Skills & Qualifications: Live PT Projects Handling Experience : Demonstrated ability to handle live penetration testing projects independently and efficiently. IT Project Management : Basic knowledge of IT project management principles. Experience with project management tools and methodologies to plan, execute, and oversee IT security projects. IT Infrastructure and Security Knowledge : Solid understanding of IT infrastructure components and security principles. Familiarity with network architecture, protocols, and security measures. Experience in Handling IT Security Projects : Proven experience in managing IT security projects from inception to completion, ensuring all security requirements are met and risks are mitigated. Key Responsibilities: Perform network penetration testing and black box testing to identify security vulnerabilities. Develop and implement testing strategies, methodologies, and tools to ensure comprehensive security assessments. Document and report findings, providing actionable recommendations to improve security posture. Collaborate with IT and security teams to address vulnerabilities and enhance overall network Stay up-to-date with the latest security trends, tools, and techniques to continuously improve testing Manage multiple IT security projects simultaneously, ensuring timely and successful completion. Desired Qualifications: Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field. Relevant certifications such as CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), or CISSP (Certified Information Systems Security Professional) are a plus. Strong analytical and problem-solving skills. Excellent communication skills, both written and verbal. Ability to work independently and as part of a team.

As a Sales Specialist for Cybersecurity & GRC Solutions at iSecurify, a pioneering division of Allianz I dedicated to simplifying and democratizing security, you will play a crucial role in driving the growth and success of our next-generation cybersecurity and GRC products. Based in Vadodara, you will be part of a dynamic and innovative team that is reshaping the security and GRC landscape with cutting-edge solutions like SIEM, MDR, vCISO, VAPT, SOC, and our powerful Single Pane of Glass (SPOG) platform. Your responsibilities will involve developing and executing sales strategies in collaboration with leadership, conducting market research to identify opportunities and ideal client profiles, and nurturing a pipeline of leads from various industries. You will be tasked with translating technical solutions into compelling business value propositions for non-technical decision-makers, assisting in packaging and pricing strategies, and aligning go-to-market efforts with product and marketing teams. Success in this role will be defined by achieving and surpassing sales quotas, influencing product packaging based on client feedback, building lasting relationships with key accounts, and contributing significantly to the expansion of iSecurify's SPOG platform into new verticals and geographies. Your ability to lead product demos, negotiations, and represent iSecurify at industry events will be key to your success in this position. Join us at iSecurify and be a part of shaping the future of cybersecurity by combining technology with real-world expertise to deliver scalable and impactful solutions.,

We are searching for an experienced VAPT professional to join our cybersecurity team. You should possess a solid background in recognizing, evaluating, and mitigating security vulnerabilities in network and application environments through thorough penetration testing and vulnerability assessments. ProTechmanize Solutions, an Information Technology product and services company, founded by professionals with over 20 years of collective experience in Cyber Security, Information Technology, IT Security & Software Development, is where you will be working. The ProTechmanize team is dedicated to offering the right solutions and services to customers through customized programs. Your responsibilities will include conducting regular vulnerability assessments of network infrastructure, applications, and systems, performing detailed penetration tests to simulate cyberattacks and identify vulnerabilities, preparing comprehensive reports of findings with recommended remediation actions, collaborating with IT and development teams to address vulnerabilities, utilizing security tools like Nessus, Metasploit, and Burp Suite, providing expert advice on security posture improvement, and staying updated on security trends and technologies. To be a suitable candidate, you must have a Bachelor's degree in Computer Science, Information Security, or a related field, along with 1.5+ to 4 years of hands-on experience in vulnerability assessment and penetration testing. Proficiency in domains such as Application security OWASP, API security testing, Network security & Mobile app security, exposure to Secure Code Review using Checkmarx or HP Fortify, and a strong understanding of common attack vectors, vulnerability exploitation techniques, and security testing methodologies are essential. In addition to technical skills, soft skills such as excellent analytical and problem-solving abilities, strong verbal and written communication skills, and the capacity to work collaboratively with cross-functional teams in a fast-paced environment are vital for this role. Please note that only candidates with the required experience should apply for this position, as it necessitates hands-on experience in VAPT.,

As a Cyber Security Specialist with 5+ years of experience, your role will involve testing and operating security controls for various applications to ensure compliance with cybersecurity standards. You will collaborate with software architects to create secure software designs by conducting threat modeling. Your responsibilities will include contributing to all levels of the architecture, performing application design reviews focusing on cybersecurity compliance, and ensuring project compliance with secure design and coding standards. You will need to have a strong attention to detail, analytical mind, outstanding problem-solving skills, and great awareness of cybersecurity trends and exploitation techniques. Familiarity with security frameworks such as IEC 62443 and NIST SSDF is essential. Additionally, you will be responsible for developing an understanding of new tools and best practices, contributing to all stages of the Secure Development Lifecycle, and conducting VAPT (Vulnerability Assessment and Penetration Testing) on target applications to identify vulnerabilities and define mitigation strategies. If you are an interested candidate with expertise in Cyber Security, VAPT, Penetration Testing, application security, OWASP, and Threat modeling, and have an immediate to 15 days notice period, we invite you to share your resume at roshan.rn@utthunga.com. The location for this position is Bangalore.,

>> Job Description Experience: 3+ years with at-least 2-3 years in client facing advisory consulting role and managing a medium sized team Preferred Certifications: CEH, ECSA, OSCP, CISSP, CCSK, OCSE, CCSP, AWS Security Desired skill set: 1. Strong understanding of IT security standards and frameworks (OWASP, NIST, CIS) 2. Strong understanding of security risks in networks and application platforms 3. Strong understanding of network security, infrastructure security and application security 4. Strong understanding of OSI, TCP/IP model and network basics 5. Demonstrate technical penetration testing skills on IT infrastructure, web applications, mobile platforms and Red teaming 6. Strong technical skills: Information security, network security, Windows security, UNIX/Linux security, web and mobile application security, Cloud platforms 7. Broad knowledge of security technologies for applications, databases, networks, servers, and desktops 8. Solid technical skills in both information security architecture and penetration testing and ability to assess testing tools and deploy the right ones. 9. Scripting and programming experience is beneficial 10. Ability to perform manual penetration testing 11. Experience in Application Security Testing (Web, Mobile & ERP [SAP]), or related functions Vulnerability Assessment, Penetration testing 12. Perform penetration testing of various thick client software, web applications, and communications infrastructure to assist in hardening the cybersecurity posture against malicious actors 13. Conduct security research on the latest emerging advanced persistent threats (APTs), malware, and other security developments to assist in enterprise security efforts. Apply this security research into assessments. 14. Perform technical writing to communicate the preparation, testing, and recommendation phases for various security tests. Work with stakeholders to remediate system vulnerabilities. 15. Train team members and colleagues on the latest cybersecurity tactics, techniques, and procedures (TTPs) to grow the skill of the firm 16. Understanding of various security technologies including end point security, perimeter security, advanced threat protection, malware defense and security management 17. Expertise in the phases of penetration testing. Familiarity with Kali Linux distribution and the associated penetration testing tools suite. Experience in penetration testing simulations like Hack the Box or Capture the Flag exercises considered a plus. 18. Good Understanding of OWASP top 10 and mitigation techniques 19. Experience in performing web application security assessments using hands on techniques for identifying SQL injections, XSS, Security Misconfiguration, CSRF, authentication/ authorization issues 20. Database testing: MySQL, Oracle, NoSQL 21. Understanding of cyber security management, cyber analytics, security intelligence platforms and threat intelligence frameworks 22. Writing business proposals and response to client RFP/ RFIs 23. Identifying business opportunities and lead delivery and program management for large cyber security programs 24. Delivery team and client relationship management 25. Experience on both commercial, open source tools and frameworks but not limited: Burpsuite, Metasploit, Core-Impact, Kali-Linux, AppScan, WebInspect, SSLScan, Soap UI Pro, SonarQube, Qualys, Nikto, Nessus, nmap, sqlmap, OWASP ZAP .

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails

What You'll Do Avalara is looking for a security risk specialist to join our team reporting to the Senior Manager, Governance Risk & Compliance. We are looking for the ability to conduct risk analysis at a systemic level, working with engineers and architects as they develop Avalaras next-generation services. You understand technical controls and be able to analyze application / product security within Avalara, including internal processes and reporting, and risks identified through code and design reviews of both internal and customer-facing software products and solutions. You will report to Senior Manager. What Your Responsibilities Will Be You will perform comprehensive risk assessments aligned with Avalaras risk management framework and develop applicable remediation plans. You will analyze and identify risks across technical environments, with a focus on application design, software architecture, and security tooling configurations. Guide the identification, management, and mitigation of risks within security infrastructure and technical control implementations. Collaborate with teams, including system owners, developers, and architects, to integrate risk management practices into the development lifecycle. Ensure risk and compliance controls are accomplished across teams and within defined Service level agreements. Coordinate the documentation and migration of control information into Avalaras GRC platform. What You'll Need to be Successful Bachelors degree in Information Technology, Computer Science, or equivalent experience. 3+ years of experience in IT Audit, IT Security, or IT Risk Management. Experience conducting systemic risk analysis in, including reviewing application design and architecture. Familiarity with standards and frameworks such as ISO 27001, SOC 1, SOC 2, SOX, NIST. Experience with application security principles, including the ability to assess risk through code and design review processes.

Deliverables System Development & Customization: Design, develop, and customize solutions within Dynamics 365 Business Central to meet the unique needs of the business for core finance processes . Lead development of new/existing modules, workflows and analytics requirements in D365 BC, SQL Server, Analytics, Reporting and Integrations using Power automate, SSRS, SSIS, Power BI, etc. Integration & Data Migration: Work on integrations between Dynamics 365 Business Central and other enterprise systems, including ERP, CRM, and external data sources. Perform data migration tasks as needed. Technical Support: Provide technical troubleshooting and support for existing implementations, ensuring systems are running efficiently and issues are resolved in a timely manner . Requirements Gathering: Collaborate with business analysts, end-users, and functional consultants to gather and document business requirements. Testing & Documentation: Conduct unit testing, assist with user acceptance testing (UAT), and ensure thorough documentation of all developments, integrations, and configurations. System Upgrades & Maintenance: Implement and manage system updates, upgrades, and patches while minimizing business disruptions. Performance Optimization: Analyze and optimize the performance of existing Dynamics 365 Business Central setups, ensuring systems run smoothly and efficiently. Training & Support: Provide training and support to end-users on new features and functionalities. Required Skills: Minimum of 6-8 years of hands-on experience as a technical consultant or developer in Microsoft Dynamics 365 Business Central Strong knowledge of Microsoft Dynamics 365 Business Central, SQL Server, PowerShell, and other technical tools to manage data and integrations. Proven experience with AL, C/AL, and other development languages used in Business Central. Experience with extensions, API integration, and web services in Dynamics 365 Business Central. Experience with data migration tools and techniques, including RapidStart. Familiarity with Microsoft Power Platform (PowerApps, Power Automate, etc.). Understanding of ERP business processes, especially in core finance. Hand on experience in MS Office, especially MS - Excel for large volume data processing. Nice to have knowledge of Microsoft Dynamics NAV. Roles and Responsibilities Designation Lead Security Engineer: Cloud & DevSecOps Experience with vulnerability assessment and penetration testing on cloud-based apps and underline infra (Kubernetes, AWS, Docker, Azure etc.). Experience in infrastructure security assessment w.r.t cloud platform. Experience in implementation and execution of DevSecOps. Build automated scripts required to implement DevSecOps using Python & others like Bash, Go. etc. Experience in Secure software development cycle. Design, implement, support and evaluate security focused tools into CI/CD pipeline . Assist in developing an automated security framework for deployments and related processes. Should have understanding on OWASP Top 10, SANS Top 25, CWE Top 25. Documentation & Reporting of application vulnerabilities and plan remediation with Dev ops teams. Ability to work independently and in a team, taking ownership of performing end to end security threat assessment and providing recommendations for rectification, for web applications. Must have Skills: Python, Any cloud security certification, CEH/OSCP/ECSA. Nice to Have Skills: Knowledge and understanding of computer applications and demonstrated proficiency with development frameworks and languages (Powershell, Java, C/C++, .NET, C#, PHP etc.) Certifications (DevOps, DevSecOps, Kubernetes, SCWCD, SCJP, SCJD, SCJA, MCSD etc.)

Security Analyst/ Pen Tester Join us as a Security Analyst at Dedalus , one of the Worlds leading healthcare technology companies, at our team in Chennai, India to do the best work of your career and make a profound impact in providing better care for a healthier planet. LINK TO APPLY : https://tinyurl.com/2x9mn999 What youll achieve As a Security Analyst , you will be part of our highly successful team, utilising your skills for Security Vulnerability Analysis/ Penetration Testing where you will test, assess, exploit & report the security vulnerabilities in the software application, infrastructure and provide recommendations for the suitable solution/ remedy. Working with an extended highly skilled team, you will be making a profound impact throughout the healthcare sector. You will: Security Vulnerability Analysis/ Threat Modelling & Risk Assessment Executing static code review using automated SAST tools & False Positive Analysis Performing dynamic testing (DAST) using automated tools like Burp-suite, Invicti/ Nessus Manual Penetration Testing and Ethical Hacking technics to exploit vulnerabilities Prepare assessment & validation report on the vulnerabilities & risks with impact, artifacts, recommended solution/ mitigation and POCs Explain threats & present assessment reports to Developer/ Architect community Take the next step towards your dream career. At Dedalus Life flows through our software. Every day we do something special by helping caregivers and health professionals deliver better care to their served communities. Take the next step in your career that will make a profound impact. Here’s what you’ll need to succeed: Essential Requirements: Minimum four-year experience in security vulnerability analysis and Pen testing (VAPT) on cloud services, web products/ enterprise applications. Ability to execute Appsec tools; Mandatory to know industry standard tools like – Burp-suite, Invicti & Fortify (or any SAST tool), Cloud-Native tools and open-source tools like - Kali, Nmap, Wireshark, Metasploit, ZAP, Echo Mirage. Technical Knowledge on SDLC and implementation essentials of various application types - Desktop, Web, API, Mobile (Hybrid/ Native) & Cloud (AWS, Azure, or GCP). Ability to understand & review Java or .NET (must have), Angular (nice to have) code with respect to security vulnerability. Clear understanding on OWASP, GDPR/ ISO Security standards. Exposure to DevAppSec automation & scripting is preferred. Valid Certification in VAPT/ Ethical Hacking in Mobile /Web /Cloud security is must. Knowledge of AI tools & securing Docker containers like Kubernetes are advantages. Understanding of real world threats & data protection acts are preferred We are Dedalus, come join us Dedalus is committed to providing an engaging, rewarding work experience that reflects the passion our employees bring to our mission of helping clinicians and nurses deliver better care to their served communities. Our company fosters a culture where employees are encouraged to learn and innovate, and to enable and enhance clinical co-operation and processes while making a meaningful difference for millions of people around the world. Each person is the end point and the starting point of the Group’s activities and the ultimate beneficiary. For this reason, we are so proud of doing our very special jobs each day. Our company is enriched by a diverse population of 7,600 people in more than 40 countries that work together to innovate and drive better healthcare options for millions of patients around the world. We are the people of Dedalus. Application Closing date: 18th August 2025 Our Diversity & Inclusion Commitment sets out Dedalus’ approach to ensuring respect, inclusion and success for all our colleagues and the wider communities we operate in. It is imperative for us to share our commitment and dedication to ensure an inclusive and diverse workplace. We recognise that we have improvements to make and on this journey, we must remain authentic and realistic but also ambitious. Our diversity & inclusion commitment – Dedalus Global Life Flows Through Our Software

As a Project Manager in our team, you will be responsible for overseeing and coordinating successful delivery of cybersecurity projects, focusing on VAPT and GRC audits. You should possess a strong background in cybersecurity, project management methodologies, and effective stakeholder communication. Your main responsibilities will include planning, executing, and closing VAPT and GRC audit projects within defined timelines and budgets. Working closely with cybersecurity consultants, ethical hackers, auditors, and client stakeholders is crucial to ensure high-quality service delivery. It will be your responsibility to define project scope, objectives, resource requirements, and deliverables. Developing detailed project plans and tracking progress against milestones are key components of this role. Managing project risks, issues, and changes to ensure project success is essential. You will need to coordinate with technical teams for accurate documentation, reporting, and remediation planning. Serving as the primary point of contact for clients on project-related matters and conducting regular project status meetings are vital tasks. Additionally, preparing executive-level reports and ensuring compliance with relevant cybersecurity standards such as ISO 27001, NIST, PCI-DSS, etc., will be part of your daily activities. To be successful in this role, you should hold a Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field, along with at least 3 years of project management experience in cybersecurity or IT services. Proven experience in managing VAPT and GRC audit projects, strong knowledge of cybersecurity frameworks and regulatory standards, and certifications like PMP, PRINCE2, or similar are preferred. Excellent leadership, communication, and stakeholder management skills are crucial, as well as the ability to manage multiple projects simultaneously. Preferred skills include a hands-on understanding of cybersecurity assessments and penetration testing methodologies, experience working with auditors, consultants, and compliance teams, and the ability to translate technical findings into business language for non-technical stakeholders.,

You will be responsible for leading and managing VAPT projects for BFS clients, including scoping, execution, reporting, and remediation tracking. You will deliver technical and governance-driven security assessments across infrastructure, applications, cloud, and network environments. Your expertise will be crucial in security governance frameworks, controls, and compliance (RBI, ISO 27001, NIST, etc.). You will review and develop security policies, procedures, and risk assessment frameworks. Collaboration with cross-functional teams and managing client relationships will be a key aspect of your role. Timely reporting and communication of critical findings to stakeholders is essential. Additionally, you will mentor junior team members and contribute to practice development. To excel in this role, you should have a Bachelors or Masters degree in IT, Cybersecurity, or related field. Possessing relevant certifications such as OSCP, CEH, CISA, CISSP (preferred) will be advantageous. Extensive experience in consulting for Banking and Financial Services clients is required. You should have strong hands-on experience with VAPT tools and methodologies. A deep understanding of governance, risk, and compliance in BFSI is necessary. Excellent presentation, reporting, and client communication skills are also expected.,

As a Deputy Manager in VAPT & Governance at our Consulting firm in Navi Mumbai, you will be responsible for leading and managing VAPT projects for our BFS clients. Your role will involve scoping, executing, reporting, and tracking remediation of these projects. Additionally, you will deliver technical and governance-driven security assessments across various environments such as infrastructure, applications, cloud, and network. Your expertise in security governance frameworks, controls, and compliance (including RBI, ISO 27001, NIST, etc.) will be crucial in this role. You will play a key part in reviewing and developing security policies, procedures, and risk assessment frameworks. Collaborating with cross-functional teams and managing client relationships will be essential to ensure successful project outcomes. Timely reporting and communication of critical findings to stakeholders will also be part of your responsibilities. Moreover, you will have the opportunity to mentor junior team members and contribute to the development of our practice. To excel in this role, you should hold a Bachelors or Masters degree in IT, Cybersecurity, or a related field. Possessing relevant certifications such as OSCP, CEH, CISA, or CISSP would be advantageous. Your extensive consulting experience in the Banking and Financial Services industry, along with strong hands-on knowledge of VAPT tools and methodologies, will be highly valued. A deep understanding of governance, risk, and compliance specific to the BFSI sector is essential. Excellent presentation, reporting, and client communication skills are also necessary for success in this position.,

Apenetration testing (PenTest) and disaster recovery (DR) test job description typically requires candidates to have expertise in both cybersecurity and business continuity. The role involves conducting authorized simulated attacks to identify vulnerabilities in systems and infrastructure, developing and testing DR plans, and providing recommendations for improvement. Penetration Testing (PenTest) Responsibilities : Vulnerability Assessment: Identify weaknesses in computer systems, networks, and applications. Simulated Attacks: Perform ethical hacking exercises to mimic real-world attacks. Reporting and Recommendations: Document findings and provide actionable recommendations for remediation. Staying Updated: Keep abreast of the latest cybersecurity threats and trends. Disaster Recovery (DR) Testing Responsibilities: DR Plan Development: Contribute to the development and maintenance of DR plans. Testing and Validation: Conduct DR tests to validate the effectiveness of the plan and identify gaps. Communication: Communicate with stakeholders regarding DR testing procedures and results. Improvement: Suggest improvements to the DR plan based on testing findings. Key Skills and Requirements : Technical Expertise: Strong understanding of operating systems, networking, and programming languages. Security Knowledge: Familiarity with cybersecurity best practices, threat models, and security tools. Communication Skills: Ability to communicate findings and recommendations to both technical and non-technical audiences. Analytical Skills: Ability to analyze root, identify trends, and develop solutions. Problem-solving Skills: Ability to troubleshoot issues and implement fixes. Additional Information: Certifications: Relevant certifications like CompTIA PenTest+, CEH, or CISSP can be beneficial. Experience : Experience in cybersecurity,penetration testing, and/or disaster recovery is usually required

Key Responsibilities: As a part of our Cyber strategy team, you will build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. Government & Public Sector - Infrastructure Security/Audit, Network Security. ISMS ISO 27001 Audit Cyber Security Policy Network Security Government & Public Sector - Infrastructure Security/Audit, Network Security. OT Security SCADA Security ISMS Implementation Data Centre Audit Data Privacy Vapt Application Security Desired qualifications B. E/ B-Tech (Tier 1/2) or MCA. Professional certifications such as CEH, ISO 27001 4+ years of relevant experience.

Conduct Vulnerability Assessments: Identifying potential weaknesses in applications and systems using automated tools and manual techniques. Perform Penetration Tests: Simulating attacks to evaluate the effectiveness of security controls and identify exploitable vulnerabilities. Analyze Findings: Interpreting assessment and testing results to determine the severity and impact of identified vulnerabilities. Report Findings: Documenting vulnerabilities, providing detailed reports with remediation recommendations, and tracking the closure of identified issues. Collaborate with Teams: Working with developers, IT, and security teams to implement security measures and address identified vulnerabilities. Stay Updated: Keeping abreast of the latest security threats, vulnerabilities, and industry best practices. Test Various Application Types: Performing security assessments on web applications, mobile applications, APIs (REST, SOAP, XML, JSON), and potentially cloud-based services. Understand Security Standards and Frameworks: Familiarity with OWASP, NIST, ISO 27001, PCI DSS, and other relevant standards is crucial. Use Security Testing Tools: Proficiency in tools like Burp Suite, OWASP ZAP, Nmap, Nessus, AppScan, Acunetix, Veracode, CheckMarx, etc. Responsibilities: The responsibilities cover the full range of testing work, from websites, mobile apps, and infrastructure testing to social engineering. In this role, the candidate is expected to: test software and hosted platforms, to identify vulnerabilities Carry out penetration testing of web applications, mobile applications, and internal infrastructure analyze code to assess its level of security and to find specific vulnerabilities Manage the security testing process perform complex simulated attacks on networks or systems Stay updated with the latest threats/vulnerabilities produce written technical reports along with an executive summary to a professional standard Research potential vulnerabilities formally brief clients and colleagues Understanding the role of AIML in cybersecurity Qualification: Minimum 3 to 5 years hands-on experience in SAST, DAST, VAPT Certifications like CEH, CompTIA Security+, and OSCP will be considered and added advantages. Familiarity with SAST, DAST, and IAST tools Understanding of Red/Blue teaming and threat hunting

vulnerability assessments using Nessus , Tenable , Qualys ,Develop and maintain vulnerability management processes and procedures ,Coordinate vulnerability remediation activities, penetration testing, scripting languages KALI ,Linux Parrot

As a Testing & Certification Engineer at Netweb, you will play a crucial role in driving demand and ensuring successful project delivery within Netweb Technologies" Product Engineering Group and Innovation Labs. With a focus on digital transformation, our strategic business has been at the forefront of revolutionizing the Storage and Computing industry for over two decades. Our innovative solutions encompass high-performance Data center, Storage, Cloud, Deep Learning, Big Data, and HPC technologies. Your responsibilities will include facilitating the Regulatory Certification (ISO, BIS, BEE, WPC, etc.) of all new products upon launch, as well as conducting necessary Testing and Certifications as per the requirements of the Sales Team. You will be tasked with staying updated on Regulatory changes, actively engaging with Industry groups such as MEITY, BIS, BEE, GeM, MAIT, CII, and coordinating with Local Labs to fulfill country-specific testing requirements. Additionally, you will address market surveillance regulatory issues and provide Technical Support to the Pre-Sales Team to ensure compliance with tender requirements related to certifications. To excel in this role, you should have experience with VAPT, IC3S, TTP, TEC certifications. We are looking for candidates with a B. Tech / Diploma in Electronics/IT/CS and a minimum of 4+ years of relevant experience. Certification in IOS, BIS, WPC, BEE, and Energy Star Certification will be advantageous. Proficiency in Benchmarking and Compliance Work is also desired. Join us at Netweb, where you will be part of a dynamic team driving innovation in the industry. For further information about our company, please visit our websites: - http://www.tyronesystems.com/ - http://www.netwebindia.com/ - https://www.netwebtech.com/index.html - https://netwebcsp.com/,

Reports to: PMO Lead / Delivery Head / Partner Job Objective: To support the planning, coordination, and governance of multiple cyber security engagements through standardized project management practices. The role involves working with internal teams and clients to ensure timely and quality delivery of audits, assessments, and compliance projects including ITGC, SOC 2, ISO 27001, VAPT, and regulatory framework implementations. Key Responsibilities: Coordinate and track the progress of multiple client engagements and internal projects across cyber security services. Support project planning activities, including creation of project plans, timelines, and resource allocation schedules. Maintain project documentation including status reports, dashboards, risk logs, and meeting notes. Assist in the monitoring of project KPIs and compliance with delivery frameworks and methodologies. Coordinate with cross-functional teams including audit, VAPT, GRC, and advisory to ensure alignment and timely execution. Serve as a liaison between client stakeholders and internal teams for effective communication and issue resolution. Support engagement closure activities such as reporting, billing inputs, and documentation archiving. Conduct follow-ups on open items, deadlines, and deliverables across ongoing projects. Identify process improvement opportunities within project governance and reporting. Candidate Requirements: 24 years of relevant experience in project coordination, PMO, or delivery support roles. Exposure to consulting, IT audit, cyber security, or technology project environments is preferred. Strong organizational and time management skills. Proficiency in MS Excel, PowerPoint, and project tracking tools (e.g., MS Project, Jira, Asana, etc.). Good communication skills (written and verbal) and ability to coordinate across multiple stakeholders. Ability to work independently and manage multiple assignments simultaneously. Attention to detail and strong documentation capabilities. Preferred Qualifications: Graduate in Engineering, Information Systems, Business Administration, or related fields. Project Mgmt. certifications is recommended or training in project management methodologies is an advantage. Familiarity with cyber security standards/frameworks (ISO 27001, SOC 2, NIST) is mandatory.

Skill Set : VAPT, OS Hardening, Ethical Hacking, SIEM, DLP, IAM, IRM Experience : 5+ Years Location : India/US Develop and implement strategic plans to achieve organizational goals and objectives. Lead and mentor teams, fostering collaboration, accountability, and high performance. Analyze business operations, identify areas for improvement, and recommend solutions. Oversee budgeting, financial analysis, and resource allocation to optimize operational efficiency. Monitor key performance indicators (KPIs) to ensure alignment with company goals. Build and maintain relationships with key stakeholders, partners, and clients. Ensure compliance with industry standards, regulations, and company policies. Drive innovation and process improvements to maintain competitive advantage.

Job Description: Seeking a results-oriented Sales Executive to drive revenue growth by selling cybersecurity products and solutions to enterprise and mid-market clients. The role involves identifying new business opportunities, managing the full sales cycle, and building long-term relationships with key stakeholders, including CISOs and IT leaders. The ideal candidate will have a solid understanding of cybersecurity technologies and a proven ability to close complex deals. Responsibilities: Sell cybersecurity solutions (e.g., network security, endpoint protection, cloud security) to B2B clients Manage and grow a pipeline of qualified leads through prospecting and relationship development Conduct product demos, presentations, and negotiate contracts Collaborate with technical teams to deliver tailored solutions to client needs Meet and exceed quarterly sales targets and KPIs Requirements: 4+ years of experience in cybersecurity or IT product sales Strong understanding of cybersecurity trends and key technologies Excellent communication, negotiation, and closing skills Experience working with enterprise accounts and decision-makers

Software development support for Windows App Store and automated installation tooling. Responsibilities include creation and maintenance of automation policies for application deployments. Required education Bachelor's Degree Required technical and professional expertise 5+ years of experience in software development. 3+ years of working experience with JAVA/Python/JavaScript/C++ Knowledge with SQL Database implementations Knowledge of SAST/DAST/IAST vulnerability scanning tools such as Mend, SonarQube, Contrast, etc. Preferred technical and professional experience Experience in cloud technologies. Good Communication skills.

Your Role and Responsibilities ConductVulnerability Assessment & Penetration Testing (VAPT) for web applications, APIs, and networks. Analyze and identify security vulnerabilities, ensuring alignment withOWASP Top 10 andsecure coding best practices. Provide security requirement analysis for applications. Offerrisk mitigation planning, vulnerability remediation recommendations, compliance guidance, and metrics reporting. Plan and coordinateNetwork & Application Security testing. Utilize security testing tools such asBurp Suite, Kali-Linux, AppScan, Nessus. Generate and share reports with customers usingMS Office tools. Collaborate with teams to enhance security implementations and provide best practice recommendations. Required education Bachelor's Degree Preferred education Bachelor's Degree Required technical and professional expertise 3-4 years of demonstrating experience in planning and executing VA & penetration tests exercises against web applications, APIs, Network. Minimum 3+ years of experience in Network and Application Security Proficient in Secure coding best practices and OWASP TOP 10 vulnerabilities Experience in security requirements analysis for application Experience in security requirement implementation recommendations & guidance Prior experience in Network & Application Security Test planning & coordination Experience in Application risk mitigation planning, Vulnerabilities remediation recommendation & guidance, Compliance & Metrics reporting Preferred technical and professional experience Industry certifications such asCEH/OSCP or equivalent preferred. Familiarity withsecurity standards (OWASP, SANS, ISO).

Will be working on Application security testing Skills. Strategize and plan static and dynamic application security testing (SAST/DAST / SCA) tools. Will be responsible for Secure Coding Practices Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise BE / B Tech in any stream, M.Sc. (Computer Science/IT) / M.C.A, with Minimum 4 plus years of experience Application Security TestingExperience with static and dynamic application security testing (SAST/DAST/ SCA) tools. Secure Coding PracticesKnowledge of secure coding standards (e.g., OWASP Top Ten) and experience in reviewing code for security vulnerabilities. Threat ModellingAbility to conduct threat modelling sessions to identify and mitigate security risks Preferred technical and professional experience Vulnerability AssessmentExperience in conducting vulnerability assessments and penetration testing Application Security TestingExperience with static and dynamic application security testing (SAST/DAST) tools. Security ToolsProficiency in using security tools like Burp Suite, Nessus, or Fortify