CrawlJobs Logo

Test Analyst / Senior Test Analyst - Penetration Testing

necsws.com Logo

NEC Software Solutions

Location Icon

Location:
India , Mumbai

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are seeking a talented and motivated Application Penetration Tester to join our growing security team. In this role, you will be responsible for identifying and exploiting vulnerabilities in web applications, APIs, and mobile applications. You will work closely with developers and security engineers to remediate vulnerabilities and improve the overall security posture of our applications. Communication and collaboration are paramount to this role, the application penetration tester will be working closely with internal stakeholders on a continuous basis, providing application security testing and secure application design and implementation guidance. The successful candidate will be able to demonstrate recent experience undertaking comprehensive application penetration testing using manual and automated testing techniques. The successful candidate will join the central architecture and design team that comprises enterprise, security, and technical architecture disciplines as well as including the application penetration testing team.

Job Responsibility:

  • Plan and execute penetration testing engagements for web applications, APIs, mobile applications, thick clients, infrastructure and cloud penetration testing
  • Identify and exploit vulnerabilities in applications using manual and automated testing techniques
  • Document findings in detail, including proof-of-concept exploits and recommendations for remediation and report writing skills
  • Collaborate with development and security teams to remediate vulnerabilities and improve application security
  • Stay up-to-date on the latest hacking techniques, vulnerabilities, and security tools
  • Participate in security code reviews and provide guidance on secure coding practices
  • May assist with developing and maintaining internal security tools and processes

Requirements:

  • Experience using a formal application penetration testing methodology such as Open-Source Security Testing Methodology Manual (OSSTMM) or Penetration Testing Execution Standard (PTES)
  • Experience using Kali Linux including bundled penetration testing tools (Nmap, Wireshark, OWASP ZAP, Sqlmap, Metasploit)
  • Experience using Burp Suite for application penetration testing
  • Knowledge of scripting and programming languages (e.g., Python, Ruby, Bash, Powershell) for custom tool development and automation
  • Familiarity with various operating systems and network structures, including client/server, Unix/Linux systems, Mac OS X, VMware/Xen, Virtual Box and cloud technologies such as AWS, Azure, or Google Cloud and Active Directory
  • Understanding of common application issues and remediation techniques, OWASP Top 10
  • Understanding of secure development practices within a secure software development lifecycle, experience of Waterfall, Agile and DevOps / DevSecOps practices
  • Hold at least one recognised application penetration testing certification, e.g. Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN), GIAC Web Application Penetration Tester (GWAPT), CompTIA PenTest+
  • Can produce high quality documentation including test reports and best practice guidance
  • Good Interpersonal, written and verbal communication skills

Nice to have:

  • Working knowledge of threat modelling methodologies to conduct threat-modelling against new applications and services
  • Familiarity with compliance & security standards across the enterprise IT landscape such as ISO 27001 and NCSC Cyber Essentials, as well industry security requirements such as NIST and CIS

Additional Information:

Job Posted:
February 18, 2026

Employment Type:
Fulltime
Icon
NEC Software Solutions - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Test Analyst / Senior Test Analyst - Penetration Testing

Cloud Security Senior Analyst

The Cloud Security Operations team works in a multi-disciplinary team of teams d...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in a similar, offensive security related role
  • Offensive Security-oriented mindset (threat-modeling, vulnerability assessments, penetration testing, etc.)
  • Hands-on experience with cloud platforms (GCP, AWS)
  • Excellent understanding of cloud security concepts/best practices in various cloud Service Providers (for example: Azure/M365)
  • Familiarity with the current threat landscape which GCP exists in
  • Familiarity with securing containers and container orchestration frameworks (such as Kubernetes)
  • Programming/scripting languages a plus (Python and PowerShell preferred, but not required)
  • Ability to deliver presentations to technical and non-technical individuals
  • Fluency in English
  • Bachelor's Degree or equivalent working experience
Job Responsibility
Job Responsibility
  • Full end to end security assurance activities in GCP including Vulnerability Assessments (preproduction, post-production), Purple Team exercises (Red and Blue team collaboration) to identify areas of risk and ensure any gaps are documented and remediated
  • Provide threat modeling and risk assessment services to characterize the risk and severity posture of various systems and components in the cloud environment
  • Partner with Engineering and Operations teams to create, implement, and apply DevSecOps practices and processes that are consumed by developers across all sectors in Citi
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Senior Information Security Compliance Analyst

We're looking for a technically grounded Senior IS Compliance Analyst who speaks...
Location
Location
United States , Chicago
Salary
Salary:
90000.00 - 130000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience in technical security roles such as Security Operations, Incident Response, Security Analysis, penetration testing, or similar
  • Practical knowledge of security tools, SIEM platforms, vulnerability management, and security monitoring
  • and ability to read and understand security logs, configurations, and technical documentation
  • 6+ years of total experience with significant time in GRC
  • Working knowledge of ISO 27001, NIST frameworks, SOC 1/2, and GDPR requirements
  • Experience developing and implementing information security policies and controls
  • ISO 27001:2022 Lead Implementer and Lead Auditor certification
Job Responsibility
Job Responsibility
  • Lead technical security assessments and integration of acquired companies, mapping their security architectures and controls to our GRC frameworks, identifying gaps, and building remediation roadmaps that address both technical security and compliance alignment
  • Bridge technical security and business stakeholders by evaluating risks through a technical lens, working alongside security engineering teams to translate GRC requirements into practical security measures, and communicating effectively across technical and non-technical audiences
  • Develop and harmonize security policies and control frameworks across acquired entities, ensuring they're both audit ready and operationally sound, while translating between technical security requirements and governance documentation
  • Own customer security questionnaire responses by leveraging your hands-on security background to provide detailed, accurate answers and collaborating with infrastructure, application security, and operations teams to gather technical evidence
  • Drive continuous improvement of our GRC program through technical security enhancements, meaningful security and compliance metrics, and process improvements that increase both control effectiveness and operational efficiency
What we offer
What we offer
  • health and welfare benefits
  • tuition assistance
  • 401K savings and other retirement programs
  • employee assistance programs
Read More
Arrow Right

Penetration Tester

Are you an ambitious cybersecurity professional with a passion for uncovering vu...
Location
Location
United Kingdom
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience in penetration testing or IT Health Check delivery
  • Current penetration testing qualification such as CREST Practitioner Security Analyst (CPSA), Crest Registered Tester (CRT), or Cyber Scheme Team Member (CSTM)
  • 2+ years of penetration testing experience (or equivalent practical experience)
  • Eligibility to obtain and maintain UK security clearances
  • Familiarity with common tools such as Burp Suite, Nmap, Nessus, Metasploit, etc.
  • Understanding of network protocols (TCP/IP, OSI model) and common web application vulnerabilities
Job Responsibility
Job Responsibility
  • Keep your penetration testing qualifications current and continue developing your technical expertise in line with business needs
  • Support the delivery of IT Health Checks and penetration tests, identifying vulnerabilities and providing clear, actionable recommendations to clients
  • Work closely with senior consultants, sharing insights and best practices while contributing to a culture of learning within the Security Testing Practice
  • Expand your skill set to offer a range of security testing services that support evolving business and client requirements
What we offer
What we offer
  • We offer competitive pay, 25 days holiday (rising to 27), 2 volunteering days, 1 personal day, plus bank holidays
  • Our benefits include a company-matched pension, life assurance, enhanced parental leave, cycle2work scheme, and more
Read More
Arrow Right
New

Senior Offensive Security Malware Lead Analyst

The Senior Offensive Security Malware Lead Analyst is a senior-level role center...
Location
Location
United States , Fort Lauderdale
Salary
Salary:
145840.00 - 218760.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
February 19, 2026
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree with a minimum of 10 years' relevant experience, or a Master’s Degree with a minimum 5 years' experience in Malware analysis and/or application penetration testing
  • Proven background in penetration testing and expertise in the risks associated with software supply chains and dependency trees
  • Hands-on experience with security testing tools such as BurpSuite Proxy, Postman, AppScan, WebInspect, and similar technologies
  • Must have or be willing to obtain industry-accredited security certifications such as OSCP, OSWE, CISSP, GWAPT, GPEN, or other related credentials
  • Advanced analytical and problem-solving skills with a demonstrated ability to take ownership and follow up on issues
  • Proficient in interpreting and applying policies, standards, and procedures
  • Excellent written and verbal communication skills
  • Demonstrated ability to work effectively in a team environment and perform well under pressure.
Job Responsibility
Job Responsibility
  • Lead the offensive security program for malware analysis and response, focusing on proactively securing the software development lifecycle
  • Perform manual and dynamic analysis on potential open-source malware within NPM, Python, and other package ecosystems to identify supply chain risks
  • Act as a subject matter expert in offensive information security, performing manual security assessments on web technologies, including APIs, JavaScript Frameworks, and Artificial Intelligence systems
  • Conduct and facilitate security reviews, penetration testing engagements, and table-top/red-team/scenario analysis exercises
  • Drive remediation efforts by outlining defense-in-depth strategies and providing strategic solutions to developers on effective security controls
  • Evaluate, recommend, and assist in the selection of new and emerging external products, applications, and technologies with a focus on their security implications
  • Work closely with internal Applications Development to enhance both architecture and application security
  • Identify opportunities for enhancements to security standards, tools, and processes, and contribute to the review of internal activities for potential improvement and automation
  • Define secure configurations for network, database, server, and desktop technologies in alignment with security policies
  • Develop strong technical documentation and deliver clear presentations to articulate vulnerability assessment results to both technical and non-technical audiences
What we offer
What we offer
  • medical, dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • discretionary and formulaic incentive and retention awards
  • Fulltime
Read More
Arrow Right

Digital Network Exploitation Analyst Senior Level

ITC is a Woman Owned Small Business delivering exceptional consultation to the U...
Location
Location
United States , Ft. Meade
Salary
Salary:
100000.00 - 220000.00 USD / Year
seekintegrity.com Logo
Integrity Technology Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • TS/SCI with Full Scope Poly Required
  • With an Associate's Degree, at least 10 years demonstrated experience related to job description
  • With a Bachelor's Degree, at least 8 years demonstrated experience related to job description
  • With a Master's Degree, at least 6 years demonstrated experience related to job description
  • With a Doctorate Degree, at least 4 years demonstrated experience related to job description
  • Relevant experience must be in computer or information systems design/development/analysis
  • Experience may also include engineering hardware and/or software, programming, computer/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, systems engineering, and/or network and systems administration
  • Completion of military training in a relevant area such as JCAC (Joint Cyber Analysis Course) will be considered towards the relevant experience requirement
What we offer
What we offer
  • 401K plan with company contributions (safe harbor and profit sharing)
  • 11 Federal holidays, 21 Days PTO
  • Medical, Dental, & Vision with substantial company contributions
  • Company provided Life, LTD and STD Insurance
  • Health Savings Accounts/ Flexible Spending Accounts
  • Referral Bonuses
  • Performance Bonuses
  • Tuition Assistance for Education, Training, and Professional certifications
  • Career Development
Read More
Arrow Right

Senior Cybersecurity Analyst Engineer

Senior Cybersecurity Analyst/Engineer to join our prime contract supporting Gold...
Location
Location
United States , Huntsville
Salary
Salary:
Not provided
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15+ years of cybersecurity experience supporting USSF, DoD, or related federal organizations
  • BA or BS degree
  • Active DoD TS/SCI clearance (with current investigation)
  • CompTIA Security+ or equivalent DoD 8570/8140 IAT/IAM certification
  • Hands-on experience with eMASS
  • Familiarity with Risk Management Framework (RMF) protocols
  • Knowledge of USSF A&A procedures
Job Responsibility
Job Responsibility
  • Support A&A activities and provide cybersecurity engineering expertise for enterprise mission systems
  • Develop, update, and manage Enterprise Mission Assurance Support Service (eMASS) entries and coordinate A&A packages in accordance with DoDI 8510.01 (RMF)
  • Maintain and report on C&A schedules, package status, and system registrations in ITIPS (formerly EITDR) in compliance with FISMA
  • Review and refine certification policies, procedures, and reports for new and evolving cyber system requirements
  • Conduct research and analysis to assess the impact of new DoD, USSF, DIA, and DISA cybersecurity directives
  • Support Vulnerability Management System (VMS) processes by documenting, tracking, and closing compliance findings
  • Contribute to Security Test & Evaluation (ST&E) efforts, penetration testing, and validation of cybersecurity controls
  • Revalidate cyber and IA controls for accredited systems and recommend improvements to strengthen mission assurance
  • Assess policy changes from higher headquarters and determine impact on current mission system security posture
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
Read More
Arrow Right

Senior Analyst, Security Operations

We are looking for a Senior Analyst, Security Operations to join our Security te...
Location
Location
United States , Wilmington
Salary
Salary:
125000.00 - 171600.00 USD / Year
symbotic.com Logo
Symbotic
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, Information Security, Cybersecurity, or a related technical field preferred
  • equivalent work experience and professional certifications (e.g., CISSP, CISM, GIAC, OSCP) may be considered
  • At least 8 years of experience in cybersecurity, with expertise in both offensive and defensive security practices
  • Strong knowledge of threat detection, incident response, and adversary tactics (MITRE ATT&CK)
  • Hands-on experience with SIEM, EDR, IDS/IPS, vulnerability management, and cloud security tools
  • Proficiency in scripting or automation (Python, PowerShell, Bash) to support investigations and testing
  • Familiarity with compliance and security frameworks (NIST CSF, SOC 2, SOX, ISO 27001)
  • Excellent communication skills to document findings, brief leadership, and mentor team members
  • Up to 10% travel may be required
  • Employees must have a valid driver’s license and the ability to drive and/or fly to client and other customer locations
Job Responsibility
Job Responsibility
  • Monitor and analyze networks, endpoints, and applications for security threats and anomalous activity
  • Investigate and resolve security alerts, escalations, and incidents within defined service levels
  • Perform threat analysis on reported and proactive threat hunting, vulnerability assessments, and penetration testing
  • Lead incident response efforts and maintain playbooks for containment and recovery
  • Partner with Security and other IT teams to analyze security controls and ensure that company security and compliance requirements are implemented and maintained
  • Provide Status Report and relevant metrics to the Security leadership
  • Participate in special projects as needed
What we offer
What we offer
  • medical
  • dental
  • vision
  • disability
  • 401K
  • PTO
  • Fulltime
Read More
Arrow Right

Computer Network Defense Analyst Senior Level

ITC is a Woman Owned Small Business delivering exceptional consultation to the U...
Location
Location
United States , Wahiawa
Salary
Salary:
100000.00 - 200000.00 USD / Year
seekintegrity.com Logo
Integrity Technology Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • TS/SCI with CI or FS Poly Required
  • 18 semester hours of military training/coursework in networking, computer science, or cyber topics is equivalent to an Associate's degree
  • With an Associate's Degree, at least 10 years demonstrated experience related to job description
  • With a Bachelor's Degree, at least 8 years demonstrated experience related to job description
  • With a Master's Degree, at least 6 years demonstrated experience related to job description
  • With a Doctorate Degree, at least 4 years demonstrated experience related to job description
  • Relevant experience must be in computer or information systems design/development, programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, and/or systems engineering
  • Experience in network or system administration
Job Responsibility
Job Responsibility
  • Use information collected from a variety of computer network defense resources to identify, analyze, and report events that occur or might occur within their environment
What we offer
What we offer
  • 401K plan with company contributions (safe harbor and profit sharing)
  • 11 Federal holidays, 21 Days PTO
  • Medical, Dental, & Vision with substantial company contributions
  • Company provided Life, LTD and STD Insurance
  • Health Savings Accounts/ Flexible Spending Accounts
  • Referral Bonuses
  • Performance Bonuses
  • Tuition Assistance for Education, Training, and Professional certifications
  • Career Development
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy