CrawlJobs Logo
Microsoft Corporation Logo Microsoft Corporation · IT - Software Development

Penetration Testing Intern

India, Multiple Locations · Job Posted January 31, 2026
Apply Position
Job Link Share

Job Description

As a Penetration Testing Intern, under supervision, you will identify problems and vulnerabilities through application of engineering to dynamically penetrate software, hardware or human systems. You will work on efforts that results in security bug discovery, exploitation and suggested security controls and mitigations in response to security flaws. You will develop and implement pen testing strategies and apply your expertise to engineer solutions. You will help influence mitigations for current and future products and solutions.

Job Responsibility

  • Identifies security vulnerabilities within specialty/area or responsibility
  • Able to come up to speed on new targets with the help of others
  • Leverages known information channels to gain context
  • Corroborates guidance against real world observations, determines and understands scope of potential impact and identifies variance or instances of known issues

Requirements

  • Currently pursuing a Bachelor's Degree in Statistics, Mathematics, Computer Science or related field
  • Must have at least one additional quarter/semester of school remaining following the completion of the internship

Nice to have

  • Currently pursuing a Master's Degree in Statistics, Mathematics, Computer Science or related field
  • CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, and/or Security+ certification
Microsoft Corporation - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Penetration Testing Intern

8 matching positions

Web Application Penetration Testing

Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
June 22, 2026
Flip Icon
Requirements
Requirements
  • Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs and mobile applications
  • 3+ years of professional experience in cybersecurity, with a focus on Web application penetration testing
  • Strong understanding of web applications, cryptography, various operating systems and security technologies
  • Strong understanding of exploitation of Microsoft platform used in enterprise environment such as windows Servers, Active Directory Certificate Service, Azure, etc.
  • Experience in one or more of the following a plus: Web application penetration testing, mobile application penetration testing application architecture and business logic analysis
  • Relevant certifications, such as GWAPT, OSCP, OSEP, CRTP, CRTO, OSWA, are strongly preferred.
!
Read More
Arrow Right

Test Manager - Application Security & Penetration Testing

The Manager, Application Security is responsible for strengthening our enterpris...
Location
Location
Malaysia , Kuala Lumpur
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in information security, Computer Science, or related field
  • Professional certifications such as CREST, OSCP+, OSEP, or GPEN
  • 7+ years of IT security experience, with at least 4 years of direct experience in project-based and annual penetration testing for web, mobile, and API applications
  • Experienced in secure code reviews, software composition analysis, container image assurance, and vulnerability assessments
  • Strong technical knowledge of web, mobile, and API security, including OWASP Top 10 and common attack vectors
  • Hands-on expertise with security testing tools
  • Working knowledge of MAS TRM, MAS Cyber Hygiene, and BNM RMiT requirements
Job Responsibility
Job Responsibility
  • Conduct penetration testing for web, mobile, and API applications
  • Perform secure code reviews, software composition analysis, and container image assurance to identify vulnerabilities early in the SDLC
  • Perform vulnerability assessments for applications, middleware, and supporting systems
  • Utilise industry-standard tools such as Burp Suite, OWASP ZAP, Fortify, Checkmarx, Black Duck, Nessus, Aqua and Qualys
  • Triage, validate, and prioritise security findings from security assessments
  • Work with development, DevOps, and infrastructure teams to ensure timely remediation
  • Track and report remediation progress, ensuring closure within timelines required by regulatory instruments and Technology Security Standards
  • Provide guidance to developers and project teams on secure coding practices
  • Embed application security controls and tools (SAST, DAST, SCA, IAST) into CI/CD pipelines
  • Maintain security documentation and provide evidence for audits and regulatory reviews
  • Fulltime
Read More
Arrow Right

Test Analyst / Senior Test Analyst - Penetration Testing

We are seeking a talented and motivated Application Penetration Tester to join o...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
necsws.com Logo
NEC Software Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience using a formal application penetration testing methodology such as Open-Source Security Testing Methodology Manual (OSSTMM) or Penetration Testing Execution Standard (PTES)
  • Experience using Kali Linux including bundled penetration testing tools (Nmap, Wireshark, OWASP ZAP, Sqlmap, Metasploit)
  • Experience using Burp Suite for application penetration testing
  • Knowledge of scripting and programming languages (e.g., Python, Ruby, Bash, Powershell) for custom tool development and automation
  • Familiarity with various operating systems and network structures, including client/server, Unix/Linux systems, Mac OS X, VMware/Xen, Virtual Box and cloud technologies such as AWS, Azure, or Google Cloud and Active Directory
  • Understanding of common application issues and remediation techniques, OWASP Top 10
  • Understanding of secure development practices within a secure software development lifecycle, experience of Waterfall, Agile and DevOps / DevSecOps practices
  • Hold at least one recognised application penetration testing certification, e.g. Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN), GIAC Web Application Penetration Tester (GWAPT), CompTIA PenTest+
  • Can produce high quality documentation including test reports and best practice guidance
  • Good Interpersonal, written and verbal communication skills
Job Responsibility
Job Responsibility
  • Plan and execute penetration testing engagements for web applications, APIs, mobile applications, thick clients, infrastructure and cloud penetration testing
  • Identify and exploit vulnerabilities in applications using manual and automated testing techniques
  • Document findings in detail, including proof-of-concept exploits and recommendations for remediation and report writing skills
  • Collaborate with development and security teams to remediate vulnerabilities and improve application security
  • Stay up-to-date on the latest hacking techniques, vulnerabilities, and security tools
  • Participate in security code reviews and provide guidance on secure coding practices
  • May assist with developing and maintaining internal security tools and processes
  • Fulltime
Read More
Arrow Right

Test Manager - Application Security & Penetration testing

The Test Manager for Application Security and Penetration Testing will enhance t...
Location
Location
Malaysia , Kuala Lumpur
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in information security, Computer Science, or related field
  • Professional certifications such as CREST, OSCP+, OSEP, or GPEN
  • 7+ years of IT security experience, with at least 4 years of direct experience in project-based and annual penetration testing for web, mobile, and API applications
  • Experienced in secure code reviews, software composition analysis, container image assurance, and vulnerability assessments
  • Strong technical knowledge of web, mobile, and API security, including OWASP Top 10 and common attack vectors
  • Hands-on expertise with security testing tools mentioned above
  • Working knowledge of MAS TRM, MAS Cyber Hygiene, and BNM RMiT requirements
Job Responsibility
Job Responsibility
  • Conduct penetration testing for web, mobile, and API applications
  • Perform secure code reviews, software composition analysis, and container mage assurance to identify vulnerabilities early in the SDLC
  • Perform vulnerability assessments for applications, middleware, and supporting systems
  • Utilise industry-standard tools such as Burp Suite, OWASP ZAP, Fortify, Checkmarx, Black Duck, Nessus, Aqua and Qualys
  • Triage, validate, and prioritise security findings from security assessments
  • Work with development, DevOps, and infrastructure teams to ensure timely remediation
  • Track and report remediation progress, ensuring closure within timelines required by regulatory instruments and Technology Security Standards
  • Provide guidance to developers and project teams on secure coding practices
  • Embed application security controls and tools (SAST, DAST, SCA, IAST) into CI/CD pipelines
  • Maintain security documentation and provide evidence for audits and regulatory reviews
  • Fulltime
Read More
Arrow Right

External Penetration Testing - Vendor Lead

This is a senior level professional position responsible for serving as a liaiso...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5 years of relevant experience in Information Security and/or relevant Technology role
  • Advanced proficiency with Microsoft Office tools and software
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Be the central liaison between Citi stakeholders and the external penetration testing vendor, acting as a collaborator to ensure smooth execution of the end-to-end engagement
  • Manage the end-to-end process of Vulnerability Disclosure activities that involves onboarding applications, triaging, retesting and identifying lessons learned from the vulnerabilities reported through this channel
  • Knowledge of OWASP Top 10 and SANS top 25
  • Perform Yearly Quality Checks on the vendors to ensure adherence to technical and process quality
  • Act as an application security subject matter expert to assist both Citi stakeholders and third-party vendors during vulnerability risk discussions
  • Focus and drive quality as it relates to the information submitted by the businesses who are requesting Penetration testing services and ensuring that the provided information is accurate and complete
  • Focus on maintaining a high level of operational oversight with all vendors and ongoing penetration testing activities in order to ensure that engagements are progressing forward with the right level of attention
  • Have strong communication skills in order to effectively communicate expectations and resolve challenges
  • Have strong technical writing and presentation skills to articulate the penetration testing process end-to-end to any audience
  • Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement and automation
  • Fulltime
Read More
Arrow Right
New

Client Information Security Manager (ISM)

The NTT DATA Services Information Security Manager (ISM) oversees and coordinate...
Location
Location
United States , Plano
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of relevant experience
  • Strong knowledge of standards / regulations impacting information security (e.g., NIST, ISO, PCI)
  • Experience with information security internal & external audits, contract compliance, and quality initiatives
  • Significant experience in identifying and utilizing a global risk based management model.
Job Responsibility
Job Responsibility
  • Ensure the delivery of information security services to the customer is in compliance with the contract and any applicable standards and regulatory requirements (e.g., PCI, SOX)
  • Collaborate with the client in the definition and implementation of information security policies, strategies, procedures and configurations in order to ensure confidentiality, integrity and availability of client’s environment and data
  • Participate with the customer in the strategic design process to translate security and business requirements into processes and systems
  • Evaluate new / emerging security products and technologies and make recommendations to customer leadership in regards to the security posture impact on the organization
  • Identify, review and recommend information security improvements as they relate to the achievement of the customer’s business goals and objectives
  • Manage and drive remediation efforts related to information security
  • remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessments
  • Identify information security weaknesses and/or gaps in the customer’s current operations and work with the customer to bring information security operations up to standards
  • Participate and represent IT Security in Delivery/Operational meetings
  • conduct an information security operational review meeting with account (e.g., Customer Delivery Executive) and customer (e.g., CISO) key stakeholders with topics including information security status and performance
  • Fulltime
Read More
Arrow Right
New

Security Analysis Specialist Advisor

We are currently seeking a Security Analysis Specialist Advisor to join our team...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 12+ years of relevant experience
  • Knowledge of standards / regulations impacting information security (e.g., PCI, HIPAA, SOX)
  • Applied knowledge of risk management concepts
  • Experience with information security internal & external audits, contract compliance, and quality initiatives
Job Responsibility
Job Responsibility
  • Ensure the delivery of information security services to the customer in compliance with the contract and any applicable standards and regulatory requirements (e.g., PCI, SOX)
  • Assist client in the definition and implementation of information security policies, strategies, procedures and settings to ensure confidentiality, integrity and availability of client’s environment and data
  • Participate with customer in the strategic design process to translate security and business requirements into processes and systems
  • evaluating new / emerging security products and technologies and making recommendations to customer leadership in regards to the security posture impact on the organization
  • Identify, review and recommend information security improvements as they relate to the achievement of the customer’s business goals and objectives
  • Participate in internal and external audits for the customer (e.g., SOX, PCI) and coordinate information security services activities
  • Drive remediation efforts related to information security
  • remediation may be from incidents, penetration tests, vulnerability scans, internal/external audits and Critical Practice assessments
  • Identify information security weaknesses and/or gaps in the customer’s current operations and work with the customer to bring information security operations up to standards
  • Participate and represent IT Security in Delivery/Operational meetings
  • Fulltime
Read More
Arrow Right
New

Cybersecurity Engineer / Team Lead

The Senior Cybersecurity Engineer / Team Lead provides technical leadership and ...
Location
Location
United States , Arlington
Salary
Salary:
103275.00 - 239062.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Masters Degree, One-and-one-half (1.5) years of additional experience can substitute for one (1) year of a typical degree program
  • Minimum 10 years' experience performing the cybersecurity and team lead tasks/responsibilities listed above
  • Ability to obtain and maintain a public trust clearance
Job Responsibility
Job Responsibility
  • Lead full lifecycle NIST RMF activities, including categorization, control implementation, security assessment, POA&M management, and ATO sustainment
  • Ensure compliance with federal security standards such as FISMA, HIPAA, and agency-specific security policies
  • Coordinate with assessment and authorization stakeholders to maintain documentation, respond to findings, and support audits and system reviews
  • Oversee enterprise vulnerability scanning operations using tools such as Nessus and agency-approved scanners
  • Review scan results, validate findings, determine criticality, and coordinate remediation with system owners and operations teams
  • Develop and maintain processes for continuous monitoring, risk scoring, and reporting to leadership
  • Integrate threat intelligence platforms to identify emerging risks and drive proactive mitigation strategies
  • Support security audits, penetration tests, and secure configuration enforcement
  • Lead coordination with internal security teams, IT operations, legal/compliance, and government stakeholders to ensure proper handling, documentation, and reporting
  • Use enterprise security tools (e.g., SIEM platforms, endpoint protection, IDS/IPS) to monitor events and support investigations
What we offer
What we offer
  • medical insurance
  • dental insurance
  • vision insurance
  • flexible spending or health savings account
  • life and AD&D insurance
  • short and long term disability coverage
  • paid time off
  • employee assistance
  • participation in a 401k program with company match
  • additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right