Application Penetration Testing Lead
11 hours ago
Application Penetration Testing LeadLocation: HyderabadMode: HybridRole OverviewThe Application Penetration Testing Lead will own and execute advanced application security testing across web, mobile, cloud and API platforms. This role focuses on manual penetration testing and dynamic testing methodologies to identify and remediate vulnerabilities, lead a small team of testers, and work with development and architecture teams to improve the organisations application security posture.Key Responsibilities- Lead and perform end-to-end penetration tests for web, mobile, cloud and API applications, including dynamic testing, exploitation, and validation of fixes. - Plan, execute, and author high-quality pen test reports with actionable remediation steps, risk ratings, and retest guidance. - Perform architecture and design reviews from a runtime/attack-surface perspective to inform pentest scope and high-risk areas. - Execute dynamic application security testing (DAST) and manual verificationfocusing on runtime attack vectors and exploitability. - Use manual testing techniques (logic flaws, business logic abuse, chained vulnerabilities) beyond automated scan coverage. - Utilize and maintain a toolkit of offensive security tools (Burp Suite Pro, OWASP ZAP, intercepting proxies, fuzzers, scanners, Nmap, etc.). - Conduct vendor / third-party application penetration assessments and evaluate external integrations. - Drive remediation by working closely with developers, architects, and product teams; prioritize vulnerabilities and define risk-based SLAs for closure. - Mentor and guide junior pentesters on methodology, reporting standards, and advanced exploitation techniques. - Communicate findings clearly to technical and non-technical stakeholders, present executive summaries for leadership. - Maintain knowledge of emerging attack techniques, tooling, and application-level threats; adapt test methodologies accordingly. - Technical Expertise - Deep, hands-on experience in manual penetration testing for web, mobile, and API applications. - Proficient with dynamic testing methodologies and tools (Burp Suite, OWASP ZAP, proxies, fuzzers, etc.). - Strong knowledge of common and advanced application attack vectors (OWASP Top 10, WASC, CWE), exploitation paths, and mitigations. - Proven experience testing applications built on Java/J2EE, .NET, Python, PHP, JavaScript stacks and modern frameworks. - Solid understanding of HTTP/HTTPS, SSL/TLS, OAuth, SAML, session management, and authentication flows. - Familiarity with network-level reconnaissance and tooling (Nmap, Nikto) as applied to application assessments. - Experience assessing mobile apps (iOS/Android) and APIs (REST, GraphQL) for logic and security flaws. - Knowledge of cloud-hosted application environments (AWS/Azure/GCP) as it relates to attack surface and test planning. - Strong scripting skills for custom exploit development and automation (Python, Bash, or similar).Preferred Qualifications- Certifications: OSCP, OSWE, GPEN, GWAPT, ECSA, LPT, or equivalent. - Experience with red-team style assessments or advanced chained-exploit scenarios. - Familiarity with pentest orchestration and scheduling in CI/CD environments (scan runners, automation, retest workflows). - Prior experience in regulated industries (BFSI, healthcare, etc.) or client-facing consulting engagements is a plus.
-
Application Penetration Testing Lead
1 day ago
Delhi, India ITC Infotech Full timeApplication Penetration Testing LeadLocation: HyderabadMode: HybridRole OverviewThe Application Penetration Testing Lead will own and execute advanced application security testing across web, mobile, cloud and API platforms. This role focuses on manual penetration testing and dynamic testing methodologies to identify and remediate vulnerabilities, lead a...
-
Penetration Tester
4 weeks ago
New Delhi, India ACL Digital Full timeJob PurposeAs a Senior Penetration Tester, your primary role is to assess and enhance the security of our information systems, networks, and applications through comprehensive penetration testing and vulnerability assessments. You will work closely with our internal product teams to identify weaknesses in their systems and provide actionable recommendations...
-
Penetration Tester
2 days ago
New Delhi, India ACL Digital Full timeJob PurposeAs a Senior Penetration Tester, your primary role is to assess and enhance the security of our information systems, networks, and applications through comprehensive penetration testing and vulnerability assessments. You will work closely with our internal product teams to identify weaknesses in their systems and provide actionable recommendations...
-
Penetration Tester
3 weeks ago
New Delhi, India NTT DATA, Inc. Full timeYour day at NTT DATAThe Penetration Tester is a seasoned subject matter expert, responsible for assessing and evaluating the security posture of the company's information systems, networks, applications and infrastructure.This role involves conducting rigorous penetration testing and ethical hacking activities to identify vulnerabilities and potential...
-
Penetration Tester
4 days ago
New Delhi, India NTT DATA, Inc. Full timeYour day at NTT DATAThe Penetration Tester is a seasoned subject matter expert, responsible for assessing and evaluating the security posture of the company's information systems, networks, applications and infrastructure.This role involves conducting rigorous penetration testing and ethical hacking activities to identify vulnerabilities and potential...
-
Penetration Tester
3 weeks ago
New Delhi, India ValueLabs Full timeWe are looking for Sr Security or Penetration Tester for Hyderabad Location - 5 Days OfficeExperience : 5 to 13 YearsWork Location : HyderabadJDProfessional Experience:** 10+ years of experience in a dedicated cybersecurity role, with a minimum of 5+ years focused on hands-on offensive security and penetration testing.- **Penetration Testing Mastery:**...
-
Penetration Tester
2 weeks ago
New Delhi, India ValueLabs Full timeWe are looking for Sr Security or Penetration Tester for Hyderabad Location - 5 Days OfficeExperience : 5 to 13 Years Work Location : HyderabadJDProfessional Experience:** 10+ years of experience in a dedicated cybersecurity role, with a minimum of 5+ years focused on hands-on offensive security and penetration testing.- **Penetration Testing Mastery:**...
-
Cybersecurity Tester/Penetration Tester
3 weeks ago
New Delhi, India ValueLabs Full timeThis is a deeply technical, hands-on leadership role for a seasoned penetration tester. You will not just run scans; you will architect our security testing strategy from the ground up, conduct sophisticated manual penetration tests, and serve as the expert consultant to all engineering teams on how to build secure code. You will be responsible for breaking...
-
New Delhi, India Art Technology and Software Full timeResponsibilitiesClient Engagement & Leadership Act as a trusted security advisor for multiple high-value clients. Manage end-to-end security assessment projects, including scoping, execution, reporting, and remediation guidance. Conduct technical and executive-level briefings to communicate findings, risks, and strategic recommendations clearly. Translate...
-
Deputy Manager – VAPT
1 week ago
New Delhi, India Cubical Operations LLP Full timeJob Title: Deputy Manager – VAPT (Vulnerability Assessment & Penetration Testing)Location: Mumbai / BangaloreExperience: 5+ YearsDepartment: Information Security / Cyber RiskJoining: Early joiners preferredAbout the Role:We are looking for a skilled Deputy Manager – VAPT to lead and execute vulnerability assessments and penetration testing engagements...
