Penetration Tester (5-8 yrs)

Exp : 5+ years

Location : Bangalore

Job Description :

Overview :

- Research, learn, and continuously enhance your skills to replicate attacker tactics, techniques, and procedures.

- Minimum 5 years of experience in web and embedded application penetration testing domains.

- Detect exploitable security vulnerabilities in mobile applications, source code, thick-client applications, APIs, embedded devices, firmware, cloud technologies and IIoT devices.

- Research and conduct fuzz test on products via communication interfaces such as Modbus, Wi-Fi, HTTP etc.
- Perform vulnerability assessments, penetration testing, and threat modeling.

- Implement secure coding practices across all development teams.

- Monitor, identify, and respond to security incidents in real time.

- Manage and secure sensitive credentials and secrets using tools like HashiCorp Vault.

- Set up API gateways and frameworks such as Kong to enforce security best practices.

- Ensure compliance with security standards like SOC 2, GDPR, or ISO 27001.

Qualifications :

- Strong expertise in cybersecurity tools and techniques.

- Proficiency in secure coding frameworks like OWASP and secrets management tools.

- Experience with SIEM tools, firewalls, and intrusion detection/prevention systems.

- Relevant certifications such as CISSP, CEH, or CompTIA Security+.

- Familiarity with API management tools (e.g., Kong, Postman) for secure integration