- Application Penetration Testing (Browser-based, API, Mobile, IoT)
- Conducting and coordinating comprehensive Attack Surface Discovery, Penetration tests and Cloud on system and network levels, employing advanced ethical hacking techniques.
- Threat Modeling
- Source Code Review
- Perform penetration testing on web applications and APIs (internal and external) to identify, assess, and report on vulnerabilities in their applications.
- Perform red team exercises to determine where weaknesses in the client's infrastructure and how it should be remediated.
- Organizing and delivering technical security operational briefings for both technical and non-technical audiences.
- Set scope, objectives, and timelines for penetration testing engagements and leverage data to create useful metrics.
- dynamic application security testing (DAST) scans on the identified targets without credentials.
- Perform credentialed DAST scans on known client URLs.
- Conduct research to identify new attack vectors.
- Review and provide feedback for all Security Artifacts.
- Play a critical role in building an AppSec program that has a wide scope and impact.
- Researching Open source emerging technologies, developing required frameworks and capabilities to perform red team exercises on new technologies adopted by clients.
- Preparing and delivering clear, accurate, and concise written and oral technical reports for management.
- Bachelor's degree in Engineering or closely related coursework in technology development disciplines
- Certifications like OSCP, CEH, OSCE, OSWE, GPEN, GCIH, GWAPT, or GXPN are desirable
- Offensive Security Certified Professional (OSCP) and/or Offensive Security Certified Expert (OSCE).
- A thorough understanding of the Secure Development Life Cycle
- Have comprehensive knowledge of common vulnerabilities (e.g., OWASP Top 10), diverse application attack vectors, security testing processes, and both wired and wireless network security protocols.
- Familiarity with common threat tactics and tools (Nmap, Metasploit, Kali Linux, Burp Suite Pro, CobaltStrike, App detective, Web Inspect, etc.).
- Cloud Service penetration testing tradecraft and methodologies across one or more service providers (e.g. AWS, GCP, etc.).
- Mobile platform penetration testing tradecraft and methodologies across widely used platforms (iOS and/or Android).
- Microservices testing
- Ability to find and exploit bugs in:
- C++, Java, JavaScript, Go, and Python
- Kubernetes, AWS, GCP, or Azure
- Memory management, namespaces, cgroups, etc.
- Passion for writing code to solve problems combined with an interest in Offensive Security.
- Ability to demonstrate a strong background in one of the following languages:
- Self-starter and quick learner requiring minimal ramp-up.
- Excellent analytical, written, oral, and interpersonal communication skills.
- Highly self-motivated, self-directed, and attentive to detail.
- Ability to effectively prioritize and execute tasks in a high-pressure environment.
- Strong communications skills to comfortably work cross-functionally across the organization.
-
Penetration Tester
3 weeks ago
Experian Hyderabad, Telangana, IndiaFull-time · Employee Status: Regular · Role Type: Hybrid · Department: Information Technology & Systems · Schedule: Full Time · **Company Description**: · Experian is the world's leading global information services company. During life's big moments — from buying a home or a car ...
-
Penetration Tester
1 week ago
Experian Hyderabad, Telangana, India**Company Description** · Experian unlocks the power of data to create opportunities for consumers, businesses and society. During life's big moments - from buying a home or car, to sending a child to college, to growing a business exponentially by connecting it with new customer ...
-
Penetration Tester
2 weeks ago
Claranet Hyderabad, India**About The Role**: · **Role** · The primary function of a Penetration Tester in the Continuous Security Testing (CST) team is to continually review the customers' defined scope for vulnerabilities, identify additional targets that should be included in the scope, and report thes ...
-
Penetration Tester
3 weeks ago
UltraViolet Cyber Hyderabad, India**Make a difference here.** · UltraViolet Cyber is a leading platform-enabled unified security operations company providing a comprehensive suite of security operations solutions. Founded and operated by security practitioners with decades of experience, the UltraViolet Cyber sec ...
-
Penetration Tester 1
2 weeks ago
RSM US LLP Hyderabad, IndiaThe Penetration Tester conducts tests and purposefully attempts to exploit existing computer systems and software to detect and correct weaknesses. · The Penetration Tester must have experience with tools used to perform Dynamic Application Security Testing (DAST) along with an u ...
-
Associate Penetration Tester
1 week ago
Claranet Hyderabad, India**About The Role**: · **Department** · Sec-1 is a Claranet Group Company, established since 2001 and now providing professional standard Information Security Solutions to over 600 customers across Public and Private sectors. Sec-1 Ltd's Continuous Security Testing (CST) team is c ...
-
Junior Penetration Tester
1 week ago
Claranet Hyderabad, India**About The Role**: · Claranet Cyber Security is a world class business unit within Claranet, designed to give customers access to market-leading information security services spanning; training, consulting, and managed services. The penetration testing team at Claranet Cyber Sec ...
-
Cst Penetration Tester
3 days ago
Claranet Hyderabad, India**About The Role**: · **Role** · The primary function of the Penetration Tester in the CST team is to continually review the customers' defined scope for vulnerabilities, identify additional targets that should be included in the scope, and report these to the client in a timely, ...
-
Anti-piracy Penetration Tester
1 week ago
DAZN Group Hyderabad, India**Job Title**: · - Anti-Piracy Penetration Tester**Location**: · - Hyderabad, India**Schedule**: · - Full-Time, Permanent**Team**: · Technology Operations - Networks**Department**: · - A - Dept HM uses to open req**What's your new role about?**: · **Anti Piracy Penetration Tester ...
-
Penetration Tester
5 days ago
BreachLock Hyderabad, IndiaPenetration TesterJob Overview:We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a ...
-
Penetration Tester
5 days ago
Experian hyderabad, IndiaJob Description · Job Description · Position Overview: · At Experian, we recognize the need for vigilant cybersecurity to safeguard our systems and data. As such, we are seeking a Penetration Tester to fortify our defenses and ensure our digital assets remain secure. · Role ...
-
Penetration Tester
1 week ago
BreachLock Hyderabad, IndiaPenetration Tester · Job Overview: · We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will ...
-
Penetration Tester
1 week ago
Experian Hyderabad, IndiaJob Description · Job DescriptionPosition Overview:At Experian, we recognize the need for vigilant cybersecurity to safeguard our systems and data. As such, we are seeking a Penetration Tester to fortify our defenses and ensure our digital assets remain secure.Role Definition:The ...
-
Cst Associate Penetration Tester
3 days ago
Claranet Hyderabad, India**About The Role**: · The Continuous Security Testing service is a consultant led vulnerability identification and verification service which makes use of automated vulnerability scanning along with significant manual testing against a broad scope in a continuing engagement. The ...
-
Penetration Tester
1 week ago
BreachLock Inc Hyderabad, IndiaJob Overview: · We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a crucial role i ...
-
Penetration Tester
5 days ago
BreachLock hyderabad, IndiaPenetration Tester · Job Overview: · We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you w ...
-
Penetration Tester
5 days ago
BreachLock Inc hyderabad, IndiaJob Overview: · We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a crucial role i ...
-
Penetration Tester
1 week ago
BreachLock Inc Hyderabad, IndiaJob Overview:We are seeking a highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. The candidate should have a strong background in ethical hacking, vulnerability assessment, and security research. Additionally, you will play a crucial role in s ...
-
Penetration Tester
1 week ago
Foundever Hyderabad, IndiaThis position involves performing security vulnerability assessment and penetration testing. Penetration tests will involve a mixture of environments, including network devices, servers, systems, databases and applications that are web-based, server-based and virtual. The success ...
-
Penetration Tester
5 days ago
NopalCyber Hyderabad, India· Conducting and coordinating comprehensive Attack Surface Discovery, Penetration tests and Cloud on system and network levels, employing advanced ethical hacking techniques. · Application Penetration Testing (Browser-based, API, Mobile, IoT) · Threat Modeling · Source Code Revi ...
Penetration Tester - hyderabad, India - NopalCyber
Description
Job Statement:
NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Managed extended detection and response (MXDR), attack surface management (ASM), breach and attack simulation (BAS), and advisory services fortify your cybersecurity across both offense and defense. AI-driven intelligence in our Nopal360° platform, our NopalGo mobile app, and our proprietary Cyber Intelligence Quotient (CIQ) lets anyone quantify, track, and visualize their cybersecurity posture in real-time. Our service packages, which are each tailored to a client's needs and budget, and external threat analysis, which provides critical intelligence at no-cost, help to democratize cybersecurity by making enterprise-grade defenses and security operations available to organizations of all sizes. NopalCyber lowers the barrier to entry while raising the bar for security and service.
Job responsibilities:
Job specifications:
Experience:
Total Experience – 4+ years
Desired Skills:
Knowledge and Experience:
Golang, Python, Java, JavaScript, C++, C
Personal Attributes