Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

KPMG India

Compare

3.5

based on 5.6k Reviews

1066 KPMG India Jobs

VAPT - Consultant

KPMG India

3.5

based on 5.6k Reviews

2-5 years

₹ 4.45 - 25L/yr (AmbitionBox estimate)

Mumbai

1 vacancy

VAPT - Consultant

KPMG India

posted 4mon ago

Job Role Insights

Flexible timing

Key skills for the job

SQL Oracle Telecom Linux Administration Windows System Administration Information Security

+ 4 more

Job Description

About KPMG in India

KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada.

Cyber security assessments
Red Teaming
Security architecture design
Infrastructure and application security assessments
Vulnerability assessment and penetration testing
Security reviews of traditional IT and non-IT network environments including Telecom and OT networks
ICS Security
IOT Security
API Security Testing

Equal employment opportunity information

Strong understanding of IT security standards and frameworks (OWASP, NIST, CIS)
Strong understanding of security risks in networks and application platforms
Strong understanding of network security, infrastructure security and application security
Strong understanding of OSI, TCP/IP model and network basics
Demonstrate technical penetration testing skills on IT infrastructure, web applications, mobile platforms and Red teaming
Strong technical skills: Information security, network security, Windows security, UNIX/Linux security, web and mobile application security, Cloud platforms
Broad knowledge of security technologies for applications, databases, networks, servers, and desktops
Solid technical skills in both information security architecture and penetration testing and ability to assess testing tools and deploy the right ones.
Scripting and programming experience is beneficial
Ability to perform manual penetration testing
Experience in Application Security Testing (Web, Mobile & ERP [SAP]), or related functions Vulnerability Assessment, Penetration testing
Perform penetration testing of various thick client software, web applications, and communications infrastructure to assist in hardening the cybersecurity posture against malicious actors
Conduct security research on the latest emerging advanced persistent threats (APTs), malware, and other security developments to assist in enterprise security efforts. Apply this security research into assessments.
Perform technical writing to communicate the preparation, testing, and recommendation phases for various security tests. Work with stakeholders to remediate system vulnerabilities.
Train team members and colleagues on the latest cybersecurity tactics, techniques, and procedures (TTPs) to grow the skill of the firm
Understanding of various security technologies including end point security, perimeter security, advanced threat protection, malware defense and security management
Expertise in the phases of penetration testing. Familiarity with Kali Linux distribution and the associated penetration testing tools suite. Experience in penetration testing simulations like Hack the Box or Capture the Flag exercises considered a plus.
Good Understanding of OWASP top 10 and mitigation techniques
Experience in performing web application security assessments using hands on techniques for identifying SQL injections, XSS, Security Misconfiguration, CSRF, authentication/ authorization issues
Database testing: MySQL, Oracle, NoSQL
Understanding of cyber security management, cyber analytics, security intelligence platforms and threat intelligence frameworks
Writing business proposals and response to client RFP/ RFIs
Identifying business opportunities and lead delivery and program management for large cyber security programs
Delivery team and client relationship management
Experience on both commercial, open source tools and frameworks but not limited: Burpsuite, Metasploit, Core-Impact, Kali-Linux, AppScan, WebInspect, SSLScan, Soap UI Pro, SonarQube, Qualys, Nikto, Nessus, nmap, sqlmap, OWASP ZAP