Penetration Tester
3 days ago
Job Overview:
We are looking for a talented and experienced VAPT Specialist with previous in Network Domain to join our team. The ideal candidate will have a strong understanding of application security standards, tools, and methodologies and will be responsible for conducting security assessments, penetration testing, and vulnerability analysis for web and mobile applications. This role requires hands-on experience with both automated and manual testing tools, familiarity with security mechanisms, and a commitment to improving the overall security posture of the organization.
Key Responsibilities:
• Conduct security assessments for both web and mobile applications.
• Perform vulnerability assessments and penetration tests using tools such as Burp Suite Pro, AppScan, Veracode, Fortify, WebInspect, Acunetix, etc.
• Leverage mobile application testing tools like Drozer, Xposed, MobSF, SSLTrustKiller, Frida, apktool, dex2jar, jadx, and IDA for iOS and Android applications.
• Conduct thorough testing of APIs to identify security flaws.
• Utilize OWASP and SANS standards to guide security practices.
• Stay up to date with the latest security testing tools, techniques, and ethical hacking methodologies.
• Compile and present risk-based findings to stakeholders, providing detailed reports and suggesting appropriate mitigations.
• Provide expertise on penetration testing methodologies, including black box, grey box, and white box testing.
• Demonstrate proficiency with common penetration testing tools such as nmap, Wireshark, Kali Linux, Metasploit, OpenVAS, OWSAP ZAP, Accunetix, Nikto, Nessus, and sqlmap.
• Assist development teams with implementing penetration tests as part of the Secure Software Development Life Cycle (Secure SDLC).
• Create and refine security checklists tailored to organizational needs.
• Ensure continuous security improvement by making suggestions for system and process enhancements.
• Experience working with SaaS, IaaS, and PaaS environments, helping integrate and optimize security technologies and processes.
Skills and Qualifications:
• Proficiency with OWASP Top 10 and SANS security standards.
• Strong experience in using security assessment tools, including both static (SAST) and dynamic (DAST) application security testing tools.
• Hands-on experience with mobile application security testing and mobile-specific vulnerabilities. • Proficient with web technologies such as J2EE, XML, JSON, SOAP, REST, and AJAX.
• Basic programming knowledge in Java, JavaScript, and SQL.
• Familiarity with encryption, authentication, and authorization techniques for secure software development.
• Experience in automating security testing using scripting languages like Python, Bash, or Java.
• Knowledge of network security and vulnerability assessment practices.
• Experience in Secure Code Review and identifying vulnerabilities in the source code.
• Strong understanding of various security techniques and risk assessment processes.
Certifications:
• Certified Ethical Hacker (CEH) or equivalent certifications related to application security.
Desired Competencies:
• OWASP, Burp Suite, Web Application Security, Acunetix, Vulnerability Assessment, Network Security, Mobile Application Security.
• Proficient in Secure Code Review, Python, Bash, Java, and Automation scripting.
-
Penetration Tester
3 days ago
Gurugram, India Soffit Infrastructure Services (P) Ltd Full timeJob Overview:We are looking for a talented and experienced VAPT Specialist with previous in Network Domain to join our team. The ideal candidate will have a strong understanding of application security standards, tools, and methodologies and will be responsible for conducting security assessments, penetration testing, and vulnerability analysis for web and...
-
Penetration Tester
2 days ago
Gurugram, India Soffit Infrastructure Services (P) Ltd Full timeJob Overview: We are looking for a talented and experienced VAPT Specialist with previous in Network Domain to join our team. The ideal candidate will have a strong understanding of application security standards, tools, and methodologies and will be responsible for conducting security assessments, penetration testing, and vulnerability analysis for web and...
-
Soffit Infrastructure Services
3 days ago
gurugram, India Soffit Infrastructure Services (P) Ltd Full timeJob Overview:We are looking for a talented and experienced VAPT Specialist with previous in Network Domain to join our team. The ideal candidate will have a strong understanding of application security standards, tools, and methodologies and will be responsible for conducting security assessments, penetration testing, and vulnerability analysis for web and...
-
▷ [21/01/2025] QA Lead Engineer
3 days ago
Gurugram, India Blockchain Staffing Ninja Full timeJob Description Document Job Title: QA Lead Engineer Location: Gurugram, India (On-site) Job Type: Full-time (6 Days a week) Experience Level: Lead Level (Web3 & Blockchain) Company Overview Our client stands a forefront of blockchain innovation and venture building, serving as a catalyst for pioneering blockchain projects. Since their inception in...
-
QA Lead Engineer
2 days ago
gurugram, India Blockchain Staffing Ninja Full timeJob Description Document Job Title: QA Lead Engineer Location: Gurugram, India (On-site) Job Type: Full-time (6 Days a week) Experience Level: Lead Level (Web3 & Blockchain) Company Overview Our client stands a forefront of blockchain innovation and venture building, serving as a catalyst for pioneering blockchain projects. Since their inception in 2013,...
-
QA Lead Engineer
4 days ago
Gurugram, India Blockchain Staffing Ninja Full timeJob Description DocumentJob Title: QA Lead EngineerLocation: Gurugram, India (On-site)Job Type: Full-time (6 Days a week)Experience Level: Lead Level (Web3 & Blockchain)Company OverviewOur client stands a forefront of blockchain innovation and venture building, serving as a catalyst for pioneering blockchain projects. Since their inception in 2013, their...
-
Blockchain Staffing Ninja | QA Lead Engineer
5 days ago
gurugram, India Blockchain Staffing Ninja Full timeJob Description DocumentJob Title: QA Lead EngineerLocation: Gurugram, India (On-site)Job Type: Full-time (6 Days a week)Experience Level: Lead Level (Web3 & Blockchain)Company OverviewOur client stands a forefront of blockchain innovation and venture building, serving as a catalyst for pioneering blockchain projects. Since their inception in 2013, their...
-
QA Lead Engineer
4 days ago
Gurugram, India Blockchain Staffing Ninja Full timeJob Description Document Job Title: QA Lead Engineer Location: Gurugram, India (On-site) Job Type: Full-time (6 Days a week) Experience Level: Lead Level (Web3 & Blockchain) Company Overview Our client stands a forefront of blockchain innovation and venture building, serving as a catalyst for pioneering blockchain projects. Since their inception in...
-
QA Lead Engineer
5 days ago
Gurugram, India Blockchain Staffing Ninja Full timeJob Description DocumentJob Title: QA Lead EngineerLocation: Gurugram, India (On-site)Job Type: Full-time (6 Days a week)Experience Level: Lead Level (Web3 & Blockchain)Company OverviewOur client stands a forefront of blockchain innovation and venture building, serving as a catalyst for pioneering blockchain projects. Since their inception in 2013, their...
-
Lead Quality Assurance Engineer
7 days ago
Gurugram, India Staffing Ninja Full timeLocation: Gurugram, Haryana, India (work from office, 6 days a week)Job Type: Full-timeExperience Level: Lead Level (Web3 & Blockchain)Role Overview:We are seeking an experienced QA Lead - Network Security with a strong background in quality assurance and network security. In this role, you will design and enforce security testing protocols, mentor a team of...
