CrawlJobs Logo

Cybersecurity Penetration Tester

India, Bengaluru · Job Posted January 07, 2026
Apply Position
Job Link Share

Job Description

Cybersecurity Penetration Tester will work with project teams to ensure applications meet our security policies.

Job Responsibility

  • Understand project deliverables and application details
  • Run automated and manual security checks (not limited to tools) to uncover security weaknesses in the system
  • Propose mitigation steps for identified risks and threats
  • Provide clear recommendations from a security perspective based on understanding of application, application risk and business context, and results of checks performed
  • Work alongside with the cybersecurity community and application teams
  • Explore process, reporting and improvement in techniques
  • Ability to collaborate with other penetration teams to align in knowledge, tools and techniques

Requirements

  • Min 3+ years of experience in penetration testing of Web, Mobile (iOS & Android), API, Thick client & Network
  • Certifications - OSCP, OSCE, GPEN, GXPN, GICSP, GWAPT, OSWP, etc.
  • Security – Web, Mobile, API, Cloud and Container, Thick Client, Network, Operating System etc.
  • Applications Development & Delivery
  • Pentest standards and methodologies, OWASP, SANS etc.
  • Subject matter expert in web/mobile/thick client/API assessments
  • Good understanding of server vulnerabilities (Linux, Windows) and hardening
  • Familiarity with cloud platforms, and cloud container security
  • Efficient and effective usage of pentest tools as well as demonstrate less dependency on tools
  • Experience with automation, scripting (Python, Perl, Ruby, etc.)
  • Strong written and verbal communication skills
  • Requirements Gathering and Analysis
  • Interpersonal Skills, proactiveness

Nice to have

  • Understanding or experience on any of the following is an advantage: Cloud Security Assessment and Security Audits of Cloud Environment
  • Vulnerability Management (Process, Tools and Metrics)
  • NIST Cybersecurity Framework
  • Critical Security Controls (CSC)
  • Expertise in DevSecOps methodologies is also an advantage
  • Proactive interest in emerging technologies (e.g. Offensive AI) and techniques related to penetration testing
  • Ability to translate technical security topics in a business-friendly manner
  • DevSecOps implementation and supporting security tooling (SAST)
  • Azure / AWS security certifications is a plus
  • CISSP, CEH also a plus

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Cybersecurity Penetration Tester

8 matching positions

Cybersecurity Penetration Tester

Our cybersecurity test team is searching for a Senior Cybersecurity Penetration ...
Location
Location
United States , Eglin Air Force Base
Salary
Salary:
Not provided
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Technical master's degree and at least 10 years of applicable experience
  • Active Secret clearance is required and must be able to obtain/maintain a Top-Secret clearance
  • U.S. Citizenship
  • Must meet DOD 8140 Cyber Workforce Foundational Qualification requirements prior to the commencement of work
  • Experience using modern penetration testing tools and methods
  • Experience with testing and exploiting web application
  • Analytical skills and problem-solving skills
  • Good organization, decision making, and verbal and written communication skills
  • Excellent self-initiative and self-motivation with the ability to work under minimal supervision
  • Ability to work effectively in small and large team settings to solve complex problems
Job Responsibility
Job Responsibility
  • Conduct independent penetration testing, data collection, test automation, and reporting
  • Develop test tools and strategies for cybersecurity testing in DOD
  • Perform system security analysis on systems and/or software to understand and identify vulnerabilities
  • Execute hands-on testing which include technical skills with multiple operating systems. (Windows, Linux, Unix) as well as various software/databases (Apache, SQL Server, Oracle, etc.)
  • Provide technical guidance and support to penetration test teams
  • Document and communicate test results effectively to technical and non-technical user groups in written and oral formats
  • Provide technical support in the management, planning, and execution of CVI, ACD, and CVPA
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
  • Fulltime
Read More
Arrow Right

Cybersecurity Penetration Tester (Traditional) - SME

CYBERSECURITY PENETRATION TESTER (TRADITIONAL) - SME LOCATION: Eglin AFB, FL J...
Location
Location
United States , Eglin AFB
Salary
Salary:
Not provided
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated subject matter expertise in penetration testing of DoD systems
  • depth of knowledge and operational experience rather than a specific degree or years-of-service threshold is the primary qualifying criterion
  • Active Secret clearance required
  • must be able to obtain and maintain a Top Secret clearance. U.S. Citizenship required
  • Must meet DOD 8140 Cyber Workforce Foundational Qualification requirements prior to the commencement of work
  • Expert-level proficiency with modern penetration testing tools, frameworks, and methodologies as applied to DoD operational environments
  • Advanced experience testing and exploiting web applications, including complex authentication mechanisms, API attack surfaces, and application logic flaws
  • Exceptional analytical and creative problem-solving skills, including the ability to develop novel attack paths against hardened or previously untested systems
  • Outstanding organizational, decision-making, and written and verbal communication skills - including the ability to present complex technical findings to senior DoD leadership and program offices
  • Demonstrated ability to independently lead, scope, plan, execute, and report on large-scale or high-visibility penetration test events
Job Responsibility
Job Responsibility
  • Serve as the program's primary technical authority on penetration testing, providing definitive guidance on methodology, tooling, scope, and risk assessment decisions
  • Conduct highly complex and independent penetration tests against DoD systems, networks, applications, and platforms - including novel or first-of-kind targets
  • Lead the development of advanced test tools, custom exploits, and strategic testing frameworks tailored to DoD cybersecurity evaluation requirements
  • Perform in-depth system security analysis to identify and characterize vulnerabilities across operating systems (Windows, Linux, Unix), software, and databases (Apache, SQL Server, Oracle, etc.)
  • Mentor and technically develop senior and mid-level penetration testers, elevating overall team capability and ensuring consistency of tradecraft
  • Establish and maintain quality standards for test documentation, findings reporting, and evidence collection across the team
  • Translate complex technical findings into clear, actionable reports and briefings for both technical audiences and senior non-technical DoD stakeholders (written and oral)
  • Provide authoritative technical leadership in the management, planning, and execution of Cooperative Vulnerability Identification (CVI), Adversarial Cyber Defense (ACD), and Cooperative Vulnerability and Penetration Assessment (CVPA) events
  • Collaborate directly with DoD Program Offices to define test scope, negotiate rules of engagement, assess mission risk, and present findings at program-level reviews
  • Identify and advocate for adoption of emerging tools, techniques, and threat-informed testing approaches relevant to DoD operational environments
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
  • Fulltime
Read More
Arrow Right
New

Senior Security Specialist / Penetration Tester

A globally renowned Investment Manager is making a rare Senior Cyber Security hi...
Location
Location
United Arab Emirates , Dubai
Salary
Salary:
Not provided
weareorbis.com Logo
Orbis Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years’ commercial Penetration testing experience covering Web, APIs, Cloud and Infrastructure
  • Experience working with Financial Services or Professional Services organisations
  • Strong scripting / automation experience, ideally ideally Python, PowerShell or similar
  • Experience and keen interest in applying AI to cybersecurity workflows
  • Relevant offensive security certifications such as OSCP, OSWE and CRTO
Job Responsibility
Job Responsibility
  • Advanced penetration testing across Web, APIs, Cloud and IT Infrastructure, including post-exploitation analysis, remediation validation and continuous improvement of testing methodologies
  • Contribute to secure architecture across cloud-native and on-premise environments, including threat modelling, zero trust controls, defence-in-depth design and security input into major system decisions
  • Embed security into engineering workflows by integrating SAST, DAST, SCA and IaC scanning into CI/CD pipelines, while developing scripts, tooling and automation to scale security testing and control validation
  • Fulltime
Read More
Arrow Right

Penetration Tester

The Penetration Tester is a seasoned subject matter expert, responsible for asse...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to work independently and manage multiple projects within remote environment
  • Demonstrates a strong ability to engage with various stakeholders, have a team-based approach and work towards share goals and outcomes
  • Ability to think outside the box and a passion to improve your skills and drive innovation
  • Ability to compromise systems and demonstrate ways to laterally move post compromise
  • In-depth knowledge of common security assessment methodologies, such as OWASP, PTES, or NIST SP 800-115
  • Strong understanding of various operating systems, network protocols, and application security
  • Proficiency in using penetration testing tools and frameworks, such as Metasploit, Burp Suite, Nmap, and Wireshark
  • Knowledge of security assessment tools and technologies used to evaluate web applications, databases, and network infrastructure
  • Excellent analytical and problem-solving skills to identify and exploit vulnerabilities effectively
  • Strong written and verbal communication skills to deliver clear and concise reports and recommendations to stakeholders
Job Responsibility
Job Responsibility
  • Plans, executes and manages complex penetration testing engagements on various IT assets, including networks, applications and databases
  • Conducts simulated cyber-attacks, including social engineering, to identify vulnerabilities and assesses the organization's resilience to cyber threats
  • Performs penetration tests against internal and external facing systems
  • Analyses and interprets penetration test results and provides detailed reports to relevant stakeholders
  • Provides input to improve the quality and effectiveness of tests in a highly scaled and global environment
  • Articulates complex technical risks through creation of reports and delivering presentations to key stakeholders
  • Works with Security DevOps teams to test the orchestration and automation processes and platforms, feed results into a testing program
  • Supports the assessment risk and the development and/or recommends appropriate mitigation countermeasures based on empirical testing
  • Provides comprehensive technical expertise with web, application and database vulnerability testing
  • Supports the development of the security automation framework and the implementation roadmap
  • Fulltime
Read More
Arrow Right

Penetration Tester

Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to work independently and manage multiple projects within remote environment
  • Demonstrates a strong ability to engage with various stakeholders, have a team-based approach and work towards share goals and outcomes
  • Ability to think outside the box and a passion to improve your skills and drive innovation
  • Ability to compromise systems and demonstrate ways to laterally move post compromise
  • In-depth knowledge of common security assessment methodologies, such as OWASP, PTES, or NIST SP 800-115
  • Strong understanding of various operating systems, network protocols, and application security
  • Proficiency in using penetration testing tools and frameworks, such as Metasploit, Burp Suite, Nmap, and Wireshark
  • Knowledge of security assessment tools and technologies used to evaluate web applications, databases, and network infrastructure
  • Excellent analytical and problem-solving skills to identify and exploit vulnerabilities effectively
  • Strong written and verbal communication skills to deliver clear and concise reports and recommendations to stakeholders
Job Responsibility
Job Responsibility
  • Plans, executes and manages complex penetration testing engagements on various IT assets, including networks, applications and databases
  • Conducts simulated cyber-attacks, including social engineering, to identify vulnerabilities and assesses the organization's resilience to cyber threats
  • Performs penetration tests against internal and external facing systems
  • Analyses and interprets penetration test results and provides detailed reports to relevant stakeholders
  • Provides input to improve the quality and effectiveness of tests in a highly scaled and global environment
  • Articulates complex technical risks through creation of reports and delivering presentations to key stakeholders
  • Works with Security DevOps teams to test the orchestration and automation processes and platforms, feed results into a testing program
  • Supports the assessment risk and the development and/or recommends appropriate mitigation countermeasures based on empirical testing
  • Provides comprehensive technical expertise with web, application and database vulnerability testing
  • Supports the development of the security automation framework and the implementation roadmap
  • Fulltime
Read More
Arrow Right

Penetration Tester, Vector Command, Social Engineering Specialist

Do you enjoy attacking networks? Do you enjoy sifting through large amounts of a...
Location
Location
United Kingdom
Salary
Salary:
Not provided
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in an active technical security role
  • Strong knowledge of the following: Advanced Social engineering techniques and tactics
  • Infrastructure management and deployment (domain records, web servers, terraform, ansible, phishing website creation).
  • Modern penetration testing tools and methods
  • Network, wireless and web application security concepts
  • Experience using interpreted languages (Ruby, Python, PHP, etc.)
  • Knowledge of common regulatory structures and obligations and common I.T. governance.
  • Bug Bounty experience, identifying novel vulnerabilities in arbitrary internet-facing attack surfaces
  • Certifications such as OSCP, OSCE, GXPN, OSEE, CREST
  • Experience with Red & Purple Teams
Job Responsibility
Job Responsibility
  • Design social engineering campaigns which function at scale, supporting numerous customers each month, emulating modern adversary TTPs
  • Deploy, configure, and maintain social engineering infrastructure to perform phishing operations at scale
  • Perform manual and automated reconnaissance at scale to identify targets for social engineering operations each month
  • Leverage external network vulnerabilities reported by Vector Command team members in targeted real-world social engineering attacks (incorporate subdomain takeovers, cross-site scripting, etc. into campaigns)
  • Research the latest techniques in social engineering and implement them in monthly campaigns
  • Research and test methods to bypass social engineering defenses such as email filters, download restrictions, multi-factor authentication mechanisms, etc. Be an expert in sending phishing emails which make it to the client’s inbox
  • Design and execute vishing campaigns
  • Incorporate payloads provided by the Red Team lead into phishing and vishing operations
  • Upon successful credential breach or payload execution, evaluate the impact and coordinate with Vector Command team members for post-compromise breach simulation
  • Collaborate closely with a team of Red Team operators, participating in daily meetings to establish attack objectives and operational direction
  • Fulltime
Read More
Arrow Right

Penetration Tester

We’re Fever, the world’s leading tech platform for culture and live entertainmen...
Location
Location
Argentina
Salary
Salary:
Not provided
https://feverup.com/fe Logo
Fever
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master’s Degree in Computer Science, Information Security, or another similar relevant degree (or equivalent experience in a Cybersecurity role)
  • 4+ years of hands-on experience in the Offensive Security area, such as penetration testing
  • Strong knowledge about cloud security environments (AWS, microservices, SaaS applications, cryptography, etc)
  • Detailed knowledge of global cyber threats, including tactics, techniques, and procedures used by cyber adversaries
  • Solid understanding of hardware, web, network protocols, APIs, security issues, common attacks (OWASP Top 10), etc
  • Experience in developing security tooling and automation
  • Professional proficiency in English
  • Analytical skills, autonomy, and accountability
  • Good communication skills
Job Responsibility
Job Responsibility
  • Conducting high-quality application and infrastructure penetration tests independently, or as part of a team
  • Perform technical reviews and assessments of new systems and features
  • Document and communicate findings, including identified vulnerabilities, exploitation techniques, and recommended remediation steps in clear and concise reports
  • Coordinate and monitor the remediation of penetration testing findings
  • Effectively communicate findings at both the technical and executive levels
  • Configure and safely use hacking tools, tactics, and procedures against authorized targets
  • Contributing to team tooling, innovation, and improvements
What we offer
What we offer
  • Attractive compensation package consisting of base salary and the potential to earn a significant bonus for top performance
  • Stock options
  • Opportunity to have a real impact in a high-growth global category leader
  • 40% discount on all Fever events and experiences
  • Osde 410 as medical insurance
  • Home office friendly
  • Responsibility from day one, and professional and personal growth
  • Great work environment with a young, international team of talented people to work with
  • English Lessons
  • Gympass
  • Fulltime
Read More
Arrow Right

Penetration Tester

We are looking for an experienced Penetration Tester to join our team. This role...
Location
Location
United States , Charleston
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 3–5 years of hands-on experience in penetration testing across various platforms and systems
  • Strong understanding of network security principles, application security, and common attack methods
  • Proficiency with tools like Burp Suite, Nmap, Metasploit, and other standard penetration testing frameworks
  • Expertise in Active Directory assessments and internal environment security
  • Solid knowledge of authentication protocols, encryption practices, and secure software development
  • Familiarity with CI/CD processes and integrating security measures into development workflows
  • Excellent communication skills, with the ability to present findings effectively to diverse audiences
  • Commitment to staying informed about the latest cybersecurity trends and technologies
Job Responsibility
Job Responsibility
  • Conduct comprehensive penetration tests on internal networks, external systems, web applications, mobile platforms, and APIs
  • Identify and analyze security vulnerabilities, providing actionable recommendations to mitigate risks
  • Utilize industry-standard tools such as Burp Suite, Nmap, Metasploit, and MobSF to perform assessments
  • Perform in-depth evaluations of Active Directory structures, including privilege escalation and lateral movement strategies
  • Assess authentication mechanisms and encryption methods to ensure secure coding practices are in place
  • Collaborate with development teams to integrate security testing tools into CI/CD pipelines
  • Prepare detailed reports on findings, presenting technical information to both technical and non-technical stakeholders
  • Stay updated on emerging attack vectors and security techniques to enhance testing methodologies
  • Assist in developing strategies to improve overall security frameworks and protocols
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • company 401(k) plan
Read More
Arrow Right