VAPT Consultant

5 days ago

Kurnool, Andhra Pradesh, India Cubical Operations LLP Full time

Job Title: VAPT Consultant

Location: Bangalore / Mumbai & Coimbatore (On-site/Hybrid as applicable)

Experience: 3+ Years

Notice Period: Immediate Joiners Preferred

Job Summary:

We are seeking a skilled and detail-oriented Vulnerability Assessment and Penetration Testing (VAPT) Consultant to join our cybersecurity team. The ideal candidate will have hands-on experience in performing both automated and manual security assessments across web applications, networks, infrastructure, and mobile platforms.

Key Responsibilities:

  • Perform comprehensive vulnerability assessments and penetration testing on applications, infrastructure, cloud, and network layers.
  • Identify security issues, misconfigurations, and vulnerabilities and provide detailed risk analysis and actionable recommendations.
  • Prepare high-quality VAPT reports including technical findings and risk-based remediation guidance.
  • Collaborate with development, IT, and security teams to validate and mitigate identified vulnerabilities.
  • Use industry-standard tools such as Burp Suite, Nessus, Nmap, Metasploit, OWASP ZAP, Wireshark, and others.
  • Keep up to date with emerging threats, vulnerabilities, and regulatory requirements.
  • Conduct retesting to validate the effectiveness of implemented security controls.

Required Skills & Qualifications:

  • Minimum 3 years of hands-on experience in VAPT (Application, Network, Cloud, Mobile, etc.).
  • Strong understanding of OWASP Top 10, SANS Top 25, MITRE ATT&CK framework, and secure coding practices.
  • Familiarity with scripting languages like Python, Bash, or PowerShell is a plus.
  • Experience with SIEM, firewalls, IDS/IPS, endpoint protection, and cloud environments (AWS, Azure, GCP) preferred.
  • Relevant certifications such as CEH, OSCP, eJPT, eCPPT, or similar are desirable.

Soft Skills:

  • Strong analytical and problem-solving skills.
  • Excellent verbal and written communication skills.
  • Ability to work independently and as part of a team.
  • Strong documentation and report-writing capabilities.

Preferred Qualifications:

  • Experience working in BFSI, Telecom, or Technology sectors.
  • Exposure to compliance frameworks such as ISO 27001, PCI DSS, or SOC 2 is an advantage.