Penetration Tester

5 days ago

Bengaluru, India Quest Global Full time

Job Requirements

Penetration Test Engineer – Product Cyber Security - We are looking for an experienced and certified Embedded and Application Penetration Tester to join our Product Cybersecurity team. In this role, you will be responsible for conducting comprehensive security assessments of our products including embedded devices, web applications, thick-client applications, and mobile applications.

ESSENTIAL DUTIES AND RESPONSIBILITIES

  • Conduct comprehensive security assessments of Wabtec products, including embedded devices, IoT devices, thick client applications, mobile and web applications,
  • Use penetration testing and Red Team techniques to discover and exploit vulnerabilities
  • Create findings reports and communicate to stakeholders
  • Perform compliance testing of embedded systems with respect to IEC standards
  • Explore new ways to exploit devices by dumping and analyzing firmware (incl reverse engineering)
  • Interact with and test JTAG, UART, and other hardware debug interfaces
  • Provide guidance on vulnerability remediation to engineering teams
  • Manage the penetration testing request process and backlog/pipeline
  • Recommend and implement improvements to testing processes and methodologies
  • Support PSIRT and Vulnerability Disclosure processes and activities
  • Promote security awareness through hacking demonstrations, CTF events ..
  • Proactively perform threat hunting for any new vulnerabilities/risk associated with products and applications.
  • Be up to date with cybersecurity trends and share information on new exploits, vulnerabilities to the appropriate stakeholders.
  • Collaborate with cross-functional teams and stakeholders to identify and mitigate security risks.

Work Experience

QUALIFICATIONS & SKILLS:

  • Bachelor's degree in computer science, cybersecurity, or a related field
  • 4-6 years of experience in web, network and embedded/IoT applications penetration testing
  • Strong expertise in various penetration testing techniques and attack frameworks such as MITRE ATTCK, PTES standards, fuzz testing, brute force attacks, OWASP top 10 tests, and more
  • Hands-on experience with penetration testing tools including open-source tools, such as Metasploit and the Kali Linux tool set, Nessus, Qualys guard, nmap, Wireshark and Burp Suite etc.
  • Demonstrate strong manual penetration testing skills and techniques that are required besides automated tools and frameworks
  • Good understanding of embedded systems security testing including firmware security, secure configuration analysis, secure boot, physical port testing (USB, serial, CAN, wireless, etc.,)
  • Knowledge of the secure SDLC and vulnerability/risk lifecycle
  • Knowledge of common vulnerability frameworks such as CVSS, and OWASP top 10
  • Experience with hardware debug tools and test equipment
  • Solid understanding of network security and penetration testing methodologies
  • Strong problem-solving and critical thinking skills
  • Excellent communication and report writing abilities
  • Certification in a relevant area such as OSCP, OSWP, GPEN, CPTC, or CPTE is highly desired
  • Excellent communication and presentation skills
  • Ability to collaborate effectively as part of a global cross functional team, working independently with minimal supervision.

  • Penetration Tester

    3 weeks ago

    Bengaluru, Karnataka, India Utthunga Full time

    Role: Penetration TesterExperience: 3- 5 yearsLocation: BangaloreSkills: Penetration Tester, Pen Tester, Cyber securityNotice period: Immediate- 15 days joinerRoles and Responsibilities· Test and operate security controls for various applications in compliance with the prescribed cybersecurity standards in place.· Collaborate with software architects to...

  • Penetration Tester

    3 weeks ago

    Bengaluru, Karnataka, India Utthunga Full time

    Role: Penetration Tester Experience : 3- 5 years Location: Bangalore Skills: Penetration Tester, Pen Tester, Cyber security Notice period: Immediate- 15 days joiner Roles and Responsibilities · Test and operate security controls for various applications in compliance with the prescribed cybersecurity standards in place. · Collaborate with software...

  • Penetration Tester

    2 weeks ago

    Bengaluru, Karnataka, India Utthunga Full time

    Role: Penetration TesterExperience: 3- 5 yearsLocation: BangaloreSkills: Penetration Tester, Pen Tester, Cyber securityNotice period: Immediate- 15 days joinerRoles and Responsibilities · Test and operate security controls for various applications in compliance with the prescribed cybersecurity standards in place.· Collaborate with software architects to...

  • Penetration Tester

    2 weeks ago

    Bengaluru, Karnataka, India Spectral Consultants Full time

    Job Opportunity: Penetration Tester(certification is Required)Experience - 3-6 YearsLocation - Bangalore (Hybrid)Key Responsibilities- Perform network, web, and application penetration testing using industry-leading tools and methodologies.- Conduct vulnerability assessments and exploit testing with tools such as Nessus, Nmap, Metasploit, Burp Suite Pro.-...

  • Penetration Tester

    2 weeks ago

    Bengaluru, Karnataka, India Spectral Consultants Full time

    Job Opportunity: Penetration Tester(certification is Required)Experience - 3-6 Years Location - Bangalore (Hybrid)Key ResponsibilitiesPerform network, web, and application penetration testing using industry-leading tools and methodologies.Conduct vulnerability assessments and exploit testing with tools such as Nessus, Nmap, Metasploit, Burp Suite Pro.Prepare...

  • Penetration Tester

    5 days ago

    Bengaluru, India Spectral Consultants Full time

    Job Opportunity: Penetration Tester(certification is Required) Experience - 3-6 Years Location - Bangalore (Hybrid) Key Responsibilities Perform network, web, and application penetration testing using industry-leading tools and methodologies. Conduct vulnerability assessments and exploit testing with tools such as Nessus, Nmap, Metasploit, Burp Suite Pro ....

  • Penetration Tester

    2 weeks ago

    Bengaluru, Karnataka, India CyberMindr Full time ₹ 1,50,000 - ₹ 28,00,000 per year

    Company DescriptionCyberMindr empowers security teams to find and fix critical exposures and vulnerabilities in internet-exposed assets before they are exploited. We continuously evaluate defenses against the latest and most sophisticated attack tactics, techniques, and procedures. Our automated solutions help discover and validate attack surface exposures,...

  • Penetration Tester

    5 days ago

    Bengaluru, India CyberMindr Full time

    Company Description CyberMindr empowers security teams to find and fix critical exposures and vulnerabilities in internet-exposed assets before they are exploited. We continuously evaluate defenses against the latest and most sophisticated attack tactics, techniques, and procedures. Our automated solutions help discover and validate attack surface exposures,...

  • Penetration Tester

    1 week ago

    Whitefield, Bengaluru, Karnataka, India SSquad Global Full time

    Company : Ssquad Global Position: Senior Penetration Tester Work Location :Bangalore, ITPL, Whitefield 5 days Work from Office Mode of Interview: Virtual Final Discussion: F2F Experience: 4-5 yrs **Job Types**: Full-time, Permanent Pay: ₹600,000.00 - ₹1,200,000.00 per year Schedule: - Day shift - Monday to Friday Work Location: In person

  • Penetration Tester

    7 hours ago

    Bengaluru, Karnataka, India Computacenter Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Life on the teamA highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our...