Penetration Tester
3 weeks ago
Role Overview:
We are seeking a skilled and innovative Security Researcher to lead our Liveness Testing and Presentation Attack Detection (PAD ) initiatives with a focus on offensive approach. The ideal candidate will employ an attacker’s mindset to simulate, test for liveness and presentation attacks, while also managing teams and projects related to liveness detection, data annotation, and quality assurance.
This role is ideal for individuals with experience in bug bounty programs, data annotation management, and QA, who can collaborate with diverse teams and stay updated on emerging attack vectors. The candidate should have expertise in liveness detection systems and presentation attack techniques, including spoofing scenarios like face masks or deepfake media. A strong ability to analyze and identify weaknesses in biometric systems and propose mitigation strategies is essential.
Key Responsibilities:
Offensive Security & Liveness Attack Simulation:
- Design and execute red-teaming operations to test liveness detection systems.
- Simulate presentation attacks using advanced techniques, such as bypass injections, emulator setups, jailbreaks, and rooted device configurations.
- Leverage frameworks like Frida for dynamic testing and reverse engineering of mobile applications.
Red Teaming for Liveness Attacks:
- Lead red-teaming efforts to simulate and analyze injection and presentation attacks.
- Develop strategies and solutions to mitigate vulnerabilities.
Liveness Testing & data pipeline Development:
- Execute and manage liveness and presentation attack tests across systems.
- Contribute to enhancing machine learning models for PAD (training can be provided).
Data Annotation & Quality Assurance:
- Oversee data annotation activities to ensure high-quality datasets for PAD and liveness testing.
- Manage QA processes to maintain standards in project deliverables.
Threat Intelligence & Community Monitoring:
- Engage in online communities, such as WhatsApp, Facebook, or user groups, to monitor and analyze shared attack vectors.
- Leverage insights from threat intelligence to enhance defense strategies.
Project Management:
- Plan, execute, and monitor projects, ensuring timely delivery and alignment with organizational goals.
Requirements:
- Hands-on expertise in bypass injection attacks, emulator usage, jailbreak/rooted environments, and frameworks like Frida.
- Hands on experience in Web and mobile application penetration testing.
- Proven ability to manage data annotation projects, including team coordination and QA.
- Strong understanding of iOS and Android frameworks for setting up attack environments.
- Familiarity with mobile application penetration testing and dynamic instrumentation tools.
- Familiarity with threat intelligence gathering from user groups or online platforms.
- Experience in large-scale BPO operations, data annotation management, or bug bounty programs is highly desirable.
Preferred Qualifications:
- Ability to adapt quickly to emerging attack methodologies.
- Background in managing teams in organizations such as Superhands or large BPOs.
- Understanding of security challenges in the Indonesian market.
- Experience with ML models and their application in PAD is a plus.
- Certification in mobile application security or ethical hacking (e.g., OSCP, CEH, or equivalent).
Why Join Us?
This is an opportunity to work on the cutting edge of security research, contribute to innovative liveness solutions, and collaborate with global teams tackling real-world challenges. If you’re passionate about offensive security and thrive in a dynamic environment, we’d love to hear from you.
-
Penetration Tester
1 week ago
Bengaluru, Karnataka, India, Karnataka ACL Digital Full timeJob Purpose As a Senior Penetration Tester, your primary role is to assess and enhance the security of our information systems, networks, and applications through comprehensive penetration testing and vulnerability assessments. You will work closely with our internal product teams to identify weaknesses in their systems and provide actionable recommendations...
-
Senior Penetration Tester
2 weeks ago
Bengaluru, Karnataka, India, Karnataka ACL Digital Full timeBachelor’s degree in computer science/engineering, information security, or a related field.Proven experience in penetration testing, vulnerability assessment, and security testing with a minimum of 8 years in a similar role.Proven track record of conducting successful penetration tests for a variety of organizations and industries.Industry-recognized...
-
Penetration Tester
3 weeks ago
Bengaluru, Karnataka, India, Karnataka Computacenter Full timeLife on the team A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our...
-
Penetration Tester
3 days ago
Bengaluru, Karnataka, India Kotak Mahindra Bank Full time ₹ 6,00,000 - ₹ 12,00,000 per yearSoftware Test Engineering II-SUPPORT SERVICES-Applications-CTB Job Title: Penetration Tester (Web Applications and REST APIs) Location: Bengaluru Job Type: Full-time About Us: Kotak Mahindra Bank is seeking an experienced Penetration Tester to join our Platform Engineering team. As a Penetration Tester, you will be responsible for identifying...
-
Penetration Tester
1 week ago
Bengaluru, Karnataka, India ACL Digital Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob PurposeAs a Senior Penetration Tester, your primary role is to assess and enhance the security of our information systems, networks, and applications through comprehensive penetration testing and vulnerability assessments. You will work closely with our internal product teams to identify weaknesses in their systems and provide actionable recommendations...
-
Penetration Tester
5 days ago
Bengaluru, Karnataka, India Spectral Consultants Full time ₹ 15,00,000 - ₹ 25,00,000 per yearJob Opportunity: Penetration Tester(certification is Required)Experience - 3-6 YearsLocation - Bangalore (Hybrid)Key ResponsibilitiesPerform network, web, and application penetration testing using industry-leading tools and methodologies.Conduct vulnerability assessments and exploit testing with tools such as Nessus, Nmap, Metasploit, Burp Suite Pro ...
-
Penetration Tester
1 week ago
Bengaluru, Karnataka, India Computacenter Full time ₹ 12,00,000 - ₹ 36,00,000 per yearLife on the teamA highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our...
-
Senior Penetration Tester
2 weeks ago
Bengaluru, Karnataka, India SSquad Global Full time ₹ 78,700 - ₹ 10,00,000 per yearWe're Hiring: Penetration Tester (Immediate Joiner)Location: Bangalore (Work from Office, 5 Days)Company: Ssquad Global )Experience: 3+ YearsAvailability: Immediate Joiners OnlyInterview Mode: Virtual,Ssquad Global is seeking a skilled and passionate Senior Penetration Tester to join our cybersecurity team at our Bangalore office. If you're a security...
-
Penetration Tester
6 days ago
Bengaluru, Karnataka, India Staffington Global Full time ₹ 12,00,000 - ₹ 36,00,000 per yearDuties and Responsibilities:o Looking atleast 8+ Years of experience in Penetration Testing.o Conduct penetration tests on a wide range of digital products, including networks, web, and mobile applications, to identify vulnerabilities and security weaknesses.o Collaborate with internal product teams to understand their set-ups, goals, and constraints.o...
-
Penetration Tester
5 days ago
Bengaluru, Karnataka, India MWIDM Full time ₹ 15,00,000 - ₹ 25,00,000 per yearWe're Hiring – Penetration Tester | Application Security Specialist Location: Bangalore (Onsite) Experience: 4–5 years Certification: OSCP or CRTP (Mandatory) Employment Type: Full-time Key Responsibilities:Perform penetration testing & security assessments of web apps, APIs, Android, iOS, cloud, embedded systems, and networks.Conduct threat modelling...
