Penetration Test Engineer
2 weeks ago
Description :
Job Summary :
We are seeking a passionate and detail-oriented Network/Infrastructure Pentester with 4 years of hands-on experience in manual security assessments. The ideal candidate will have strong expertise in identifying, exploiting, and reporting vulnerabilities in internal and external infrastructure, networks, firewalls, VPNs, and other critical assets. This role focuses on manual testing techniques, not just tool-driven scans, and requires deep technical understanding of networks, protocols, and system-level exploits.
Key Responsibilities :
- Perform manual infrastructure and network penetration testing (internal and external).
- Assess firewalls, routers, switches, VPNs, load balancers, servers, etc., for misconfigurations and vulnerabilities.
- Conduct port scanning, banner grabbing, service enumeration, and protocol-level analysis.
- Exploit discovered vulnerabilities using manual methods and custom scripts (e.g., Python, Bash).
- Identify and exploit common misconfigurations (e.g., SMB shares, weak SNMP strings, default credentials).
- Analyze and exploit network services (DNS, SMTP, FTP, SSH, RDP, etc.)
- Test for segmentation flaws and lateral movement opportunities within internal networks.
- Assess cloud infrastructure (AWS/Azure/GCP) from a network and IAM perspective (bonus).
- Generate detailed, clear, and actionable technical and executive-level reports.
- Collaborate with system/network administrators and DevOps teams to explain findings and remediation steps.
- Stay updated with emerging threats, exploits, and TTPs (Tactics, Techniques, and Procedures).
Technical Skills & Tools Expected :
Manual Pentesting & Recon :
- Hands-on with nmap, netcat, telnet, dig, tcpdump, etc.
- Strong understanding of TCP/IP, DNS, DHCP, NAT, VPNs, firewalls, and network topologies.
- Deep understanding of network protocols and their weaknesses (e.g., ARP spoofing, DHCP poisoning).
- Manual enumeration of services (e.g., SMB, LDAP, RDP, HTTP headers).
Exploitation & Tools :
- Manual use of Metasploit (not auto-pwn).
- Familiar with CrackMapExec, Responder, Impacket, Kerberos attacks.
- Use of Hydra, John the Ripper, or Hashcat for credential testing.
- Privilege escalation techniques in Linux/Windows environments.
Vulnerability Analysis :
- Ability to interpret and validate findings from automated tools (e.g., Nessus, Nexpose, Qualys).
- Manual verification of CVEs, misconfigurations, and weak services.
- Understanding of OWASP Top 10 for Infrastructure, CIS Benchmarks, and MITRE ATT&CK.
Reporting & Documentation :
- Strong skills in documenting PoC screenshots, risk rating, CVSS scoring.
- Ability to create clear, concise remediation guidance.
Preferred Certifications (not mandatory but an advantage) :
- OSCP, CRTP, CRTE, eCPPT, CPT, CEH (v11 or above).
Soft Skills :
- Strong analytical thinking and problem-solving skills.
- Excellent verbal and written communication.
- Ability to work independently and in team settings.
- Curious mindset with a passion for offensive security.
Bonus Skills (Not Required but Nice to Have) :
- Experience with Active Directory attacks (Kerberoasting, Pass-the-Hash, etc.)
- Cloud security pentesting (AWS IAM misconfigurations, S3 bucket checks).
- Familiarity with scripting (Python, Bash, PowerShell) for automation or exploitation.
- Red team exposure or purple team engagements.
-
Junior Penetration Testing Engineer
2 days ago
Hyderabad, Telangana, India Amgen Inc Full time ₹ 6,00,000 - ₹ 18,00,000 per yearWhat you will doIn this vital role has a strong focus on ensuring the organization's infrastructure, applications, and systems are secure from external and internal threats. This role is responsible for conducting authorized security tests on IT infrastructure to evaluate the strength of its systems against potential cyberattacks. A variety of automated...
-
Penetration Test Professional
1 week ago
Hyderabad, Telangana, India IDESLABS PRIVATE LIMITED Full time ₹ 15,00,000 - ₹ 25,00,000 per yearApenetration testing (PenTest) and disaster recovery (DR) test job description typically requires candidates to have expertise in both cybersecurity and business continuity. The role involves conducting authorized simulated attacks to identify vulnerabilities in systems and infrastructure, developing and testing DR plans, and providing recommendations for...
-
Penetration Tester
4 hours ago
Hyderabad, Telangana, India PRUDENT GLOBALTECH SOLUTIONS PRIVATE LIMITED Full time ₹ 12,00,000 - ₹ 36,00,000 per yearKey Responsibilities : Penetration Testing & Analysis : - Perform comprehensive, multi-layered penetration tests (e.g., black-box, gray-box, white-box) on web applications, mobile applications (iOS/Android), network infrastructure, cloud environments (AWS/Azure/GCP), APIs, and internal systems. - Develop and execute detailed test plans,...
-
Penetration Tester, Retail Engineering
2 weeks ago
Hyderabad, Telangana, India Apple Full time ₹ 20,00,000 - ₹ 25,00,000 per yearApple is a place where extraordinary people gather to do their best work. Together we craft products and experiences people once couldn't have imagined - and now can't imagine living without. If you're motivated by the idea of making a real impact, and joining a team where we pride ourselves in being one of the most diverse and inclusive companies in the...
-
Penetration Tester
6 days ago
Hyderabad, Telangana, India, Telangana NTT DATA, Inc. Full timeYour day at NTT DATA The Penetration Tester is a seasoned subject matter expert, responsible for assessing and evaluating the security posture of the company's information systems, networks, applications and infrastructure. This role involves conducting rigorous penetration testing and ethical hacking activities to identify vulnerabilities and potential...
-
Penetration Tester
2 days ago
Hyderabad, Telangana, India NTT DATA Global Delivery Services Ltd Full time ₹ 1,20,000 - ₹ 2,60,000 per yearPenetration Tester Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive. Your day...
-
Penetration Tester
2 weeks ago
Hyderabad, Telangana, India NTT DATA Full time ₹ 20,00,000 - ₹ 25,00,000 per yearMake an impact with NTT DATAJoin a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.Your day at NTT DATAThe Penetration...
-
Penetration Tester
2 weeks ago
Hyderabad, Telangana, India NTT Ltd. Full time ₹ 15,00,000 - ₹ 20,00,000 per yearMake an impact with NTT DATAJoin a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it's a place where you can grow, belong and thrive.Your day at NTT DATAThe Penetration...
-
Penetration Tester
2 weeks ago
Hyderabad, Telangana, India Vatins Systems Full time ₹ 6,00,000 - ₹ 12,00,000 per yearMinimum of 2 years of experience with OSCP/CRTP (mandatory) in cybersecurity roles, with a strong focus on application security, including Vulnerability Assessments, Penetration Testing, and threat intelligence integration on Web and Mobile.
-
Penetration Tester
1 week ago
Hyderabad, Telangana, India Prudent Technologies and Consulting, Inc. Full time ₹ 15,00,000 - ₹ 25,00,000 per yearKey Skills for a Penetration Tester (Pen Tester)Penetration testers, often called ethical hackers, simulate cyberattacks to find and exploit vulnerabilities in systems, networks, applications, and processes. Below, I have outlined essential skills grouped by the focus areas in your query: ethical hacking, vulnerability assessment, network security, and...
