Penetration Tester (New Delhi)

Position: Web Penetration Tester Location: Bangalore / Pune Shift: 24/7 rotational shift Work Mode: 5 days work from office Experience: 4 to 7 Years Job Title: Web Application Penetration Tester Mandatory Technical & Functional Skills: - Perform manual application penetration testing on one or more of the following to identify and exploit vulnerabilities: web applications, internal applications, APIs, and mobile applications. - Possess 3+ years of hands-on experience in cybersecurity, with a strong focus on web application penetration testing. - Demonstrate a solid understanding of web application architecture, cryptography, operating systems, and various security technologies. - Exhibit proficiency in identifying and exploiting vulnerabilities within Microsoft enterprise environments, including Windows Servers, Active Directory Certificate Services, Azure, and related platforms. - Exposure to or experience in mobile application penetration testing, application architecture analysis, and business logic assessment is an added advantage. - Industry-recognized certifications such as GWAPT, OSCP, OSEP, CRTP, CRTO, or OSWA are highly desirable. OR Position: Network Penetration Tester Location: Bangalore / Pune Shift: 24/7 rotational shift Work Mode: 5 days work from office Mandatory Technical & Functional Skills - Minimum 2 to 7 years of skilled experience in cybersecurity, with a primary focus on network penetration testing and red teaming engagements. - In-depth understanding of network protocols, web applications, cryptography, operating systems, and security technologies. - Strong knowledge of exploiting Microsoft enterprise environments, including Windows Servers, Active Directory Certificate Services, Azure, and related platforms. - Hands-on experience with a wide range of offensive security tools, frameworks, and scripting languages such as Kali Linux, Metasploit, Burp Suite, C2 frameworks, PowerShell, Python, etc. - Excellent verbal and written communication skills, with the ability to clearly articulate complex security findings to both technical and non-technical stakeholders. - Exposure to or experience in web and mobile application penetration testing, application architecture assessment, and business logic testing will be an added advantage. - Industry-recognized certifications such as GWAPT, OSCP, OSEP, CRTP, CRTO, or OSWA are strongly preferred.