Senior Penetration Tester

Senior Penetration Tester

Experience: 2+ years
Salary : INR 12,00,000-20,00,000 / year
Preferred Notice Period: Within 30 Days
Shift: 10:00AM to 7:00PM IST
Opportunity Type: Onsite (Bengaluru)
Placement Type: Permanent

(*Note: This is a requirement for one of Uplers' Partners)

What do you need for this opportunity
Must have skills required :
Penetration Testing, Source code review
Good to have skills :
Cloud Security, container security, Security certifications

Our Hiring Partner is Looking for:
Penetration Tester who is passionate about their work, eager to learn and grow, and who is committed to delivering exceptional results. If you are a team player, with a positive attitude and a desire to make a difference, then we want to hear from you.

Role Overview Description
We are seeking a skilled and driven Penetration Tester to join our cybersecurity team and play a critical role in identifying and addressing vulnerabilities across our systems, networks, and applications to ensure the highest level of security.

PRIMARY RESPONSIBILITIES :
● Perform intelligence-led security assessments on Internet-facing web applications.
● Conduct security assessments on internal and external software applications/services, including REST/SOAP/GraphQL APIs, ESB, Middleware, and other channels
● Perform penetration tests across public/private network infrastructure assets.
● Perform code aware penetration testing and security assessment of the iOS/Android mobile applications.
● Perform security assessment of cloud environments (AWS/Azure/GCP/other) with automated tools, custom scripts, and configuration audits.
● Perform internal and external adversary emulations and AD red teaming.

ADDITIONAL RESPONSIBILITIES :
Dependent on the role
● Develop testing scripts and procedures for comprehensive assessment requirements.
● Perform penetration tests and vulnerability assessments on client infrastructure using a standard methodology with automated, ad-hoc, and manual testing techniques
● Compile executive and technical reports and make recommendations to findings in a responsive fashion.
● Conducts external and internal segmentation testing against client infrastructure.
● Develop penetration testing strategy and test cases for complex enterprise applications.
● Develop methodology documents and pre-engagement questionnaires for Penetration Testing and Vulnerability Assessment projects.
● Thoroughly document exploit chain/proof of concept scenarios for client consumption.

Required Skills and Experience
● 2 to 5 years of relevant work experience.
● Ability to work methodically, independently, and prioritize work
● Strong communication skills (both written and verbal) in English, with the ability to present complex technical topics clearly, moderate discussions and meetings, and act as a trusted subject matter expert
● Strong technical knowledge in performing manual/ automated network security assessments using open-source and commercial security tools on various operating systems, applications, networks, and security infrastructure devices.
● Excellent up-to-date technical and hands-on knowledge and experience in current attack methods, penetration testing methods, and hacking tools, especially for web applications, are required.
● A Desire to learn and to share knowledge of common software vulnerabilities, such as OWASP Top 10 and CWE/SANS Top 25.
● OSCP/OSWE/OSEP/OSCE/CRTP or other security certifications are desirable.
● Hands-on experience in Kali Linux, Metasploit, Nexpose, Nmap, Burp, Paros, Nessus, Appscan, Core Impact, and other relevant tools.
● Flexibility and adaptability to work in a growing, dynamic, international team with a strong customer-oriented attitude.
● Willingness to travel (domestic/international)

Interview Process:
● 1st Round : Technical round with Practice Head
● 2nd Round : Technical round with HM
● 3rd Round- COO Round

How to apply for this opportunity

1. Register or login on our portal
2. Click 'Apply,' upload your resume and fill in the required details.
3. Post this click ‘Apply Now' to submit your application.
4. Get matched and crack a quick interview with our hiring partner.
5. Land your global dream job and get your exciting career started!

About Our Hiring Partner:
NST Cyber pioneers proactive, AI-driven Cyber Threat Exposure Management (CTEM). Our flagship NST Assure CTEM delivers rapid threat assessment, continuous vulnerability prioritization and automated responses while maintaining compliance. In a dynamic cyber landscape, we're dedicated to safeguarding digital assets and operational integrity of our customers.
NST Cyber is a leading provider of Threat Exposure Management to Global banks and Forbes 2000 companies.

About Uplers:
Our goal is to make hiring reliable, simple, and fast. Our role will be to help all our talents find and apply for relevant opportunities and progress in their career. We will support any grievances or challenges you may face during the engagement. You will also be assigned to a dedicated Talent Success Coach during the engagement.

(Note: There are many more opportunities apart from this on the portal. Depending on the assessments you clear, you can apply for them as well).

So, if you are ready for a new challenge, a great work environment, and an opportunity to take your career to the next level, don't hesitate to apply today. We are waiting for you!