Penetration Tester

10 hours ago

Mumbai India ISECURION Full time

Job Description

Job Title: Penetration Tester

Location: Thane Mumbai

Experience: 6+ Years in Information Security Department

Notice Period: Immediate

Job Summary:

We are seeking a highly skilled and creative Penetration Tester with over 6 years of experience to join our Offensive Security team. The successful candidate will have deep expertise in identifying vulnerabilities in enterprise infrastructure, web applications, Active Directory environments, and cloud platforms (AWS, Azure, GCP) all without prior internal knowledge of the systems being tested.

This role demands a think-outside-the-box mindset, capable of discovering novel attack vectors that others overlook, with a strong focus on making meaningful, measurable impacts on organizational security.

Key Responsibilities:

Perform comprehensive black box penetration testing of:

o Enterprise networks and internal infrastructure

o Web and mobile applications

o Active Directory environments (Kerberos, LDAP, domain trusts, etc.)

o Cloud platforms including AWS, Azure, and GCP

Identify and exploit misconfigurations, logic flaws, privilege escalations, and other high-impact vulnerabilities.

Simulate real-world attack scenarios such as credential attacks, lateral movement, and privilege escalation in AD/cloud hybrid environments.

Document detailed technical findings, risk ratings, proof-of-concept exploits, and remediation strategies.

Collaborate with internal teams to validate fixes and ensure secure configuration post-remediation.

Stay up to date with threat actor tactics, techniques, and procedures (TTPs).

Contribute to internal tooling, red team exercises, and security testing methodologies.

Mentor junior team members and assist in strategic planning of offensive security initiatives.

Required Skills and Qualifications:

6+ years of proven experience in black box penetration testing.

Strong expertise in Active Directory testing, including attack paths, domain privilege escalation, and lateral movement.

Experience in cloud security testing across AWS, Azure, and GCP environments (IAM roles, misconfigured services, metadata exploitation, etc.).

Solid understanding of network protocols, web application security, OWASP Top 10, and API exploitation.

Proficiency with tools such as Burp Suite, Nmap, Impacket, BloodHound, Mimikatz, Metasploit, and PowerView etc.

Scripting ability in Python, PowerShell, or Bash for exploit development and automation.

Strong analytical and creative problem-solving skills.

Excellent report writing and verbal communication abilities.

Preferred Certifications (Good to Have):

OSCP / OSEP / CRTP / CRTE / OSED / OSWE / GPEN / AZ-500 / AWS Security Specialty

Microsoft or cloud-specific red team certifications are a plus

What Were Looking For:

A strategic attackers mindset who can go beyond surface-level vulnerabilities.

A technical leader who can assess modern hybrid infrastructures with precision.

A contributor who can deliver real-world risk insights, not just findings.

  • Penetration Tester

    2 weeks ago

    Mumbai, Maharashtra, India DigiFortex Full time

    Company DescriptionDigiFortex is an emerging Cyber Security startup recognized by the Govt. of Karnataka and Silicon India. The company is ISO 27001 certified and empanelled by CERT-In for Information Security Auditing Services. DigiFortex operates globally, focusing on Advanced Penetration Testing (VA/PT), Managed Security Services (MSSP), Security...

  • Penetration Tester

    2 weeks ago

    Mumbai, Maharashtra, India DigiFortex Full time

    Company Description Digi Fortex is an emerging Cyber Security startup recognized by the Govt.of Karnataka and Silicon India.The company is ISO 27001 certified and empanelled by CERT-In for Information Security Auditing Services.Digi Fortex operates globally, focusing on Advanced Penetration Testing (VA/PT), Managed Security Services (MSSP), Security...

  • Penetration Tester

    2 weeks ago

    India CIEL HR Full time

    Job Summary **ROLE**:.penetration tester **Experience**: 3 - 7 Years **Location**: Chennai Work Location - DLF, Chennai - Work from Office Alternative saturday working **Security Test Engineer**: Understand the non-functional requirements from business. Experience in Analyzing and identifying the vulnerabilities manually. Experience in Web Application...

  • Penetration Tester

    2 weeks ago

    Mumbai, Maharashtra, India DigiFortex Full time

    Company Description DigiFortex is an emerging Cyber Security startup recognized by the Govt. of Karnataka and Silicon India. The company is ISO 27001 certified and empanelled by CERT-In for Information Security Auditing Services. DigiFortex operates globally, focusing on Advanced Penetration Testing (VA/PT), Managed Security Services (MSSP), Security...

  • Penetration Tester

    2 weeks ago

    Mumbai, Maharashtra, India DigiFortex Full time

    Company DescriptionDigiFortex is an emerging Cyber Security startup recognized by the Govt. of Karnataka and Silicon India. The company is ISO 27001 certified and empanelled by CERT-In for Information Security Auditing Services. DigiFortex operates globally, focusing on Advanced Penetration Testing (VA/PT), Managed Security Services (MSSP), Security...

  • Penetration Tester

    1 week ago

    Mumbai, Maharashtra, India DigiFortex Full time ₹ 5,00,000 - ₹ 10,00,000 per year

    Company DescriptionDigiFortex is an emerging Cyber Security startup recognized by the Govt. of Karnataka and Silicon India. The company is ISO 27001 certified and empanelled by CERT-In for Information Security Auditing Services. DigiFortex operates globally, focusing on Advanced Penetration Testing (VA/PT), Managed Security Services (MSSP), Security...

  • Lead Penetration Tester

    1 week ago

    India Delta System & Software, Inc. Full time

    Job Title: Lead Penetration Tester Location: India (Remote - Travel to Office Once a Month) Job Type: Full-Time Industry: Cybersecurity / Information Technology Work Hours: Standard IST hours Travel: Once a month to client/office location (as required) About the Role: We are seeking an experienced and highly skilled Lead Penetration...

  • Lead Penetration Tester

    5 days ago

    India Delta System & Software, Inc. Full time

    Job Title: Lead Penetration Tester Location: India (Remote - Travel to Office Once a Month) Job Type: Full-Time Industry: Cybersecurity / Information Technology Work Hours: Standard IST hours Travel: Once a month to client/office location (as required) About the Role: We are seeking an experienced and highly skilled Lead Penetration...

  • Penetration Tester

    1 week ago

    Mumbai, Maharashtra, India Yethi Consulting Full time ₹ 9,00,000 - ₹ 12,00,000 per year

    Job DescriptionRole: Penetration TesterLocation: Mumbai (Work from Office)Experience: 5+ YearsKey Responsibilities:Conduct advanced application-level penetration tests on both thick client and web-based applications.Perform dynamic analysis and manual testing with strong expertise in Burp Suite.Stay updated with the latest vulnerabilities, exploits, and...

  • Web Application Penetration Tester

    2 weeks ago

    India WTW Full time

    202501122 - India - Taguig, Metro Manila, Philippines - Bevorzugt **Description**: The Role Please enter the responsibilities of the role - Responsibility: - Security Analysis: Analyzing the results of penetration tests to assess the severity of identified vulnerabilities, their potential impact on the system and the business, and the likelihood of...