10 Vulnerability Testing Jobs

As a Security Testing professional with 3-10 years of experience in SAST/DAST/API, Network, Mobile Security, DevSecOps, Cloud Security, Threat Modelling, Vulnerability Management, Logging & Audit, GRC, Security Operations, and IAM, your role as a part of the Infosys delivery team will encompass various responsibilities. Your main responsibility will be to ensure effective Design, Development, Validation, and Support activities to meet and exceed client expectations in the technology domain. This will involve gathering requirements and specifications to deeply understand client needs and translating them into system requirements. Additionally, you will be pivotal in estimating work requirements accurately to provide vital input on project estimations to Technology Leads and Project Managers. Your contribution will be essential in the creation of efficient programs and systems that align with client requirements and industry best practices. If you are passionate about aiding clients in their digital transformation journey and possess the required expertise, then this opportunity is tailored for you! This job opening is available in multiple locations including Bangalore, Hyderabad, Trivandrum, Chennai, and Pune.,

Essential Services : Role & Location fungibility At ICICI Bank, we believe in serving our customers beyond our role definition, product boundaries, and domain limitations through our philosophy of customer 360-degree. In essence, this captures our belief in serving the entire banking needs of our customers as One Bank, One Team . To achieve this, employees at ICICI Bank are expected to be role and location-fungible with the understanding that Banking is an essential service . The role descriptions give you an overview of the responsibilities, it is only directional and guiding in nature. About the role As a Lead Information Security Resiliency and Vulnerability Assessment & Penetration Testing Manager, you will be responsible for defining the scope for annual Vulnerability Assessment & Penetration Testing (VAPT) activity and handling end-to-end third party VAPT assessment activity. The selected applicant, would be accountable for managing organizations cyber resiliency and for implementing cyber resilience goals. Key Responsibilities Business Understanding: Understanding/Knowledge of information security domains, risks, mitigation and overall management. Experience and knowledge of servers, networks, security devices etc. Collaborate: Interaction with various stakeholders/teams on daily basis. Ability to communicate effectively with Heads of various teams. Proactively coordinating with different teams for tracking and closure of open observations and escalating when necessary. Vendor Management: Facilitating the vendor with requirements for carrying out the VAPT assessment. Vendor selection, evaluation and finalization for the annual Vulnerability Assessment & Penetration Testing (VAPT) activity. Candidate should review the draft reports shared by vendors and suggest if any changes required, Validation of final reports. Timely communication of final reports to relevant stakeholders. Qualifications & Skills Educational Qualification: Engineering Graduate in CS, IT, EC or InfoSec, CyberSec or MCA equivalent. Certifications: ISO27001, CISSP, CISM Compliance: Candidate should validate the security controls deployed across DC, DR, NDR and COLO environment and prepare the quarterly resiliency report to share with senior management. Synergize with Team: Ability to work collaboratively with different teams for closure of activities. Strong analytical and problem-solving skills. Experience in the banking domain will add an advantage. Strong understanding and hands-on experience of VAPT activity and Information Security resiliency. Communication skills: Excellent communication and interpersonal skills. About the Business Group ICICI Banks Technology Risk Management Group believes in providing services to its customers in the safest and secure manner keeping in mind that data protection and secure Technology for its customers is as important as providing quality banking services across the spectrum. The CIA triad of Confidentiality, Integrity, and Availability is at the heart of building a comprehensive information security framework. The Bank also lays emphasis on customer elements like protection from phishing, adaptive authentication, awareness initiatives, and provide easy to use protection and risk configuration ability in the hands of customers. The Bank also undertakes campaigns to create awareness among customers on security aspects while banking through digital channels.

Sr. Manager - Cloud Security Engineer (185) - J49421 Our client is looking for Sr. Manager - Cloud Security Engineer Desired candidate should have; Required Skill: Expertise in Microsoft Azure Security. 4+ years of experience in Microsoft Azure Cloud Security services and features to provide a secure production environment. - Must have 6+ years` experience in designing, executing and supporting IT cloud solutions for any large multinational corporation at Global or Regional level. Should have a bachelors degree in computer science, information technology, electronics, or telecommunications. - Good to have Azure Security Engineer Certification and or Azure Solution Architect Certification or equivalent - Effective communication skills (written and verbal) to properly articulate complicated cloud reports to management and other IT development partners. - Excellent knowledge of cloud computing technologies and current computing trends. - Experience in designing and implementing security solutions for enterprise systems and applications. - Knowledge of security assessments and vulnerability testing. - Strong collaboration and communication skills. - Ability to stay up-to-date with the latest security trends and technologies. - Positive attitude and a strong commitment to delivering quality work. - Experience with Azure implementation at enterprise level - Exposure to multiple, diverse technologies and processing environments - Knowledge of all components of a technical architecture - Knowledge of business process re-engineering principles and processes - Strong understanding of network architecture and application development methodologies. - Strong interest and curiosity in leveraging the latest in tech to solve customer problems. - Experience in communicating with end users, technical & business teams to collect requirements, describe product features, and technical designs. - Experience meeting goals in a fast-paced environment with rapidly changing needs Qualification - BE-Comp/IT,BSc-Comp/IT,BSc-Other,BTech-Comp/IT,BTech-Other

Sr. Manager - Azure RBAC - J49422 Our client is looking for Sr. Manager - Azure RBAC Desired candidate should have; Required Skill: Expertise in Microsoft Azure Security. - 4+ years of experience in Microsoft Azure Cloud Security services and features to provide a secure production environment. - Must have 4+ years` experience in designing, executing and supporting IT cloud solutions for large multinational corporations at a Global or Regional level. Should have a bachelors degree in computer science, information technology, electronics, or telecommunications. - Good to have Azure Security Engineer Certification and or Azure Solution Architect Certification or equivalent - Effective communication skills (written and verbal) to properly articulate complicated cloud reports to management and other IT development partners. - Excellent knowledge of cloud computing technologies and current computing trends. - Experience in designing and implementing security solutions for enterprise systems and applications. - Knowledge of security assessments and vulnerability testing. - Strong collaboration and communication skills. - Ability to stay up-to-date with the latest security trends and technologies. - Positive attitude and a strong commitment to delivering quality work. - Experience with Azure implementation at enterprise level - Exposure to multiple diverse technologies and processing environments - Knowledge of all components of a technical architecture - Knowledge of business process re-engineering principles and processes - Strong understanding of network architecture and application development methodologies - Strong interest and curiosity in leveraging the latest in tech to solve customer problems. - Experience in communicating with end users, technical & business teams to collect requirements, describe product features, and technical designs. - Experience meeting goals in a fast-paced environment with rapidly changing needs Qualification -BE-Comp/IT,BE-Other,BSc-Comp/IT,BSc-Other,BTech-Comp/IT,BTech-Other,CA,CS

Sr. Manager - Azure RBAC - J49422 Our client is looking for Sr. Manager - Azure RBAC Desired candidate should have; Required Skill: Expertise in Microsoft Azure Security. - 4+ years of experience in Microsoft Azure Cloud Security services and features to provide a secure production environment. - Must have 4+ years` experience in designing, executing and supporting IT cloud solutions for large multinational corporations at a Global or Regional level. Should have a bachelors degree in computer science, information technology, electronics, or telecommunications. - Good to have Azure Security Engineer Certification and or Azure Solution Architect Certification or equivalent - Effective communication skills (written and verbal) to properly articulate complicated cloud reports to management and other IT development partners. - Excellent knowledge of cloud computing technologies and current computing trends. - Experience in designing and implementing security solutions for enterprise systems and applications. - Knowledge of security assessments and vulnerability testing. - Strong collaboration and communication skills. - Ability to stay up-to-date with the latest security trends and technologies. - Positive attitude and a strong commitment to delivering quality work. - Experience with Azure implementation at enterprise level - Exposure to multiple diverse technologies and processing environments - Knowledge of all components of a technical architecture - Knowledge of business process re-engineering principles and processes - Strong understanding of network architecture and application development methodologies - Strong interest and curiosity in leveraging the latest in tech to solve customer problems. - Experience in communicating with end users, technical & business teams to collect requirements, describe product features, and technical designs. - Experience meeting goals in a fast-paced environment with rapidly changing needs Qualification -BE-Comp/IT,BE-Other,BSc-Comp/IT,BSc-Other,BTech-Comp/IT,BTech-Other,CA,CS

Manager - Cloud Security Engineer - J49425 Our client is looking for Manager - Cloud Security Engineer Desired candidate should have; Required Skill: Expertise in Microsoft Azure Security. - 4+ years of experience in Microsoft Azure Cloud Security services and features to provide a secure production environment. - Must have 4+ years` experience in designing, executing and supporting IT cloud solutions for large multinational corporations at a Global or Regional level. - Should have a bachelors degree in computer science, information technology, electronics, or telecommunications. - Good to have Azure Security Engineer Certification and or Azure Solution Architect Certification or equivalent - Effective communication skills (written and verbal) to properly articulate complicated cloud reports to management and other IT development partners. - Excellent knowledge of cloud computing technologies and current computing trends. - Experience in designing and implementing security solutions for enterprise systems and applications. - Knowledge of security assessments and vulnerability testing. - Strong collaboration and communication skills. - Ability to stay up-to-date with the latest security trends and technologies. - Positive attitude and a strong commitment to delivering quality work. - Experience with Azure implementation at enterprise level - Exposure to multiple diverse technologies and processing environments - Knowledge of all components of a technical architecture - Knowledge of business process re-engineering principles and processes - Strong understanding of network architecture and application development methodologies - Strong interest and curiosity in leveraging the latest in tech to solve customer problems. - Experience in communicating with end users, technical & business teams to collect requirements, describe product features, and technical designs. - Experience meeting goals in a fast-paced environment with rapidly changing needs Qualification -BE-Comp/IT,BE-Other,BSc-Comp/IT,BSc-Other,BTech-Comp/IT,BTech-Other

Essential Services : Role & Location fungibility At ICICI Bank, we believe in serving our customers beyond our role definition, product boundaries, and domain limitations through our philosophy of customer 360-degree. In essence, this captures our belief in serving the entire banking needs of our customers as One Bank, One Team . To achieve this, employees at ICICI Bank are expected to be role and location-fungible with the understanding that Banking is an essential service . The role descriptions give you an overview of the responsibilities, it is only directional and guiding in nature. About the role As a Lead Information Security Resiliency and Vulnerability Assessment & Penetration Testing Manager, you will be responsible for defining the scope for annual Vulnerability Assessment & Penetration Testing (VAPT) activity and handling end-to-end third party VAPT assessment activity. The selected applicant, would be accountable for managing organizations cyber resiliency and for implementing cyber resilience goals. Key Responsibilities Business Understanding Understanding/Knowledge of information security domains, risks, mitigation and overall management. Experience and knowledge of servers, networks, security devices etc. Collaborate Interaction with various stakeholders/teams on daily basis. Ability to communicate effectively with Heads of various teams. Proactively coordinating with different teams for tracking and closure of open observations and escalating when necessary. Vendor Management Facilitating the vendor with requirements for carrying out the VAPT assessment. Vendor selection, evaluation and finalization for the annual Vulnerability Assessment & Penetration Testing (VAPT) activity. Candidate should review the draft reports shared by vendors and suggest if any changes required, Validation of final reports. Timely communication of final reports to relevant stakeholders. Qualifications & Skills Educational Qualification Engineering Graduate in CS, IT, EC or InfoSec, CyberSec or MCA equivalent. Certifications ISO27001, CISSP, CISM Compliance Candidate should validate the security controls deployed across DC, DR, NDR and COLO environment and prepare the quarterly resiliency report to share with senior management. Synergize with Team Ability to work collaboratively with different teams for closure of activities. Strong analytical and problem-solving skills. Experience in the banking domain will add an advantage. Strong understanding and hands-on experience of VAPT activity and Information Security resiliency. Communication skills Excellent communication and interpersonal skills.

Security Testing (Penetration testing, DAST Testing, SAST Testing, OWASP top 10) 8-12 Years Experience: 8 to 12 years Category: Software Development/ Engineering Location: Bangalore/Hyderabad/Chennai/Pune/Mumbai Education Qualification: Bachelor's degree in Computer Science or related field or higher with minimum 8 years of relevant experience. Your future duties and responsibilities: 8+ years of penetration testing experience, preferably in highly regulated industries and for global clients Proficiency with scripting and programming languages, mainly Python Perform Penetration Testing for networks (internal & external), applications, APIs & cloud assessments Vulnerability identification and analysis Collaborate with team members and stakeholders to define project scopes, review test results, and determine remediation steps Advanced problem-solving skills Any security certifications are a plus Strong written and verbal communication skills Ability to work autonomously with little directional oversight Ability to lead a project and multiple testers Commitment to quality and on-schedule delivery; and a proven ability to establish and meet milestones and deadlines Customer-focused mentality to understand and appropriately respond to customers business needs Draft reports and communicate complex security concepts and test findings to clients and stakeholders Make expert recommendations to help clients improve their information security program Work on researching & developing utilities, toolkits, processes, tactics, and techniques Required qualifications to be successful in this role: Must to have skills-Penetration testing, DAST Testing, SAST Testing, OWASP top 10 Good to have Skills- Python Skills: Java Python Vulnerability Assessment(IAVA) Vulnerability Testing (IAVT)

Security Testing (Penetration testing, DAST Testing, SAST Testing, OWASP top 10) Education Qualification: Bachelor's degree in Computer Science or related field or higher with minimum 8 years of relevant experience. Your future duties and responsibilities: 8+ years of penetration testing experience, preferably in highly regulated industries and for global clients Proficiency with scripting and programming languages, mainly Python Perform Penetration Testing for networks (internal & external), applications, APIs & cloud assessments Vulnerability identification and analysis Collaborate with team members and stakeholders to define project scopes, review test results, and determine remediation steps Advanced problem-solving skills Any security certifications are a plus Strong written and verbal communication skills Ability to work autonomously with little directional oversight Ability to lead a project and multiple testers Commitment to quality and on-schedule delivery; and a proven ability to establish and meet milestones and deadlines Customer-focused mentality to understand and appropriately respond to customers business needs Draft reports and communicate complex security concepts and test findings to clients and stakeholders Make expert recommendations to help clients improve their information security program Work on researching & developing utilities, toolkits, processes, tactics, and techniques Required qualifications to be successful in this role: Must to have skills-Penetration testing, DAST Testing, SAST Testing, OWASP top 10 Good to have skills- Python Skills: Java Python Vulnerability Assessment(IAVA) Vulnerability Testing (IAVT)

Must Have: Experience in handling Clients and Stakeholder interactions. Well versed with CSV and GxP process and ability to adopt to client Process, systems and documentation needs like Test Protocol, Test Plan, Test Strategy, IQ/OQ/PQ scripts, RTM, Test Summary Report etc., Understanding of various SDLC methodologies(Agile, Waterfall, V) Flexibility to Work as per Customer timings Generate Automation Test Strategy for applications deployed on Cloud. ( Public and Private cloud) Automate scripts using a given Selenium-based framework, Serenity based BDD framework or any open-source tools. Working experience in testing Restful Webservices and APIs using frameworks or tools like POSTMAN, Rest API, etc. Analyze requirements, perform impact analysis, and regression analysis, and communicate with stakeholders on the need for changes in requirements. Perform Risk Analysis of Project & automation deliverables and work towards mitigation plans. Good experience with various testing types like Functional, Regression, UI/ Usability, Integration testing, etc., Hands-on experience using ADO or any test management tools. Good to Have: Experience in Programming or scripting languages (Java/JS etc.,). Experience in designing automation frameworks (POM, Cucumber BDD, etc.,.). Experience working on CAPAS, Incident Management, FMEA Risk Assessment, Functional Risk Assessment etc., Experience with Vulnerability testing (VAPT). Knowledge of Performance testing using Jmeter or any open-source tools. Idea on Generative AI for testing. An idea of estimation techniques for Automation testing efforts (Design and Execution). Experience in testing and test planning of CI/CD-based solutions through tools like Azure DevOps.