Web Application Penetration Testing
2 weeks ago
Roles & responsibilities
Manage cyber threat management projects and lead day-to-day
red team operations.
Plan, scope and conduct complex red team engagements:
external/internal network, Active Directory, cloud
(AWS/Azure/GCP), web & API, mobile backends, and
physical/social engineering components (phishing, vishing,
in-person tests).
Conduct comprehensive web & API testing: reconnaissance,
authenticated/unauthenticated testing, injection flaws
(SQLi/NoSQLi), RCE, SSRF, XSS, IDOR, broken
authentication/authorization, logic flaws, insecure deserialization,
unsafe file uploads and API misconfigurations; chain findings into
host footholds.
Conduct network & infrastructure testing: perimeter and internal
assessments, host/service enumeration, CVE-based exploitation,
pivoting, lateral movement, privilege escalation, persistence and
attack path mapping.
Execute Active Directory compromise exercises: Kerberos
abuse, Golden/Silver Ticket, ACL abuse, user/group privilege
escalation and Group Policy weaknesses.
Simulate stealthy adversary tradecraft (MITRE ATT&CK)
including OpSec, EDR/AV evasion, SIEM evasion and covert
payload delivery (HTML smuggling, advanced delivery chains).
Design, develop and customize offensive tooling and exploits;
maintain red team infrastructure (C2, payloads, automation).
Conduct cloud adversarial simulations: identity abuse,
misconfiguration chaining, and privilege escalation across cloud
services.
Plan and run social engineering campaigns and measure human
susceptibility; craft realistic pretexts using OSINT
Come as
you are
at KGS
As a firm, we are deeply
committed to diversity,
inclusion and equity at our
workplace. We offer a safe
and inclusive environment
built on trust, where all our
colleagues can bring their
authentic selves to work
and know that their
uniqueness is valued.
We prohibit unfair
treatment of applicants and
employees and
discrimination on any
ground, including but not
limited to, caste, religion,
color, ancestry, marital
status, medical condition,
sex, gender identity and/or
expression, sexual
orientation, age,
nationality, cultural origin,
family or parental status,
defense veterans,
physical, mental or
sensory disability or any
other status or
characteristic protected by
applicable Indian laws and
regulations.
Mandatory technical &
functional skills
Conduct red team exercises to evaluate and enhance the
organization's security posture. These exercises simulate
real-world attack scenarios to identify areas of weakness and
improve defenses.
Key activities include planning and executing simulated
attacks, analyzing security gaps, and providing actionable
recommendations for remediation
4+ years of professional experience in cybersecurity, with a
focus on Web application penetration testing.
Strong background in cybersecurity with a focus on
penetration testing.
Experience in Web and Network PT.
Relevant certifications such as OSCP, CRTP,CRTO.
Proficient in threat modeling and vulnerability exploitation
techniques.
Excellent analytical and problem-solving skills.
-
Web Application Penetration Testing Consultant
2 weeks ago
Bengaluru, Karnataka, India Careernet Full time ₹ 8,00,000 - ₹ 24,00,000 per yearKey Skills: Penetration Testing, Vulnerabilities, Web Application Security, Manual Testing.Roles & Responsibilities:Conduct manual application penetration tests on web applications, internal applications, APIs, and mobile applications to discover and exploit vulnerabilities.Independently research new vulnerabilities in systems and software, modifying and...
-
Web Application Penetration Tester
2 days ago
Bengaluru, Karnataka, India Hewlett Packard Enterprise | HPE Full time ₹ 15,00,000 - ₹ 30,00,000 per yearWeb Application Penetration TesterThis role has been designated as 'Remote/Teleworker', which means you will primarily work from home.Who We Are:Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from...
-
Bengaluru, Karnataka, India Excellence and Eminence LLP Full time ₹ 12,00,000 - ₹ 36,00,000 per yearWe are looking for a Software Development Engineer Web Penetration with 36Years of Experience for our esteemed clients for Chennai and Bangalore Location.Key Skills: Web Penetration Testing amp; API Testing, Bug Bounty, Burp Suite Labs, Intruders amp; Collaborator, OWASP Testing ASVS, MASVS Checklist, Thick Client, Web, mobile. IOS and Android This is an...
-
Penetration Testing Staff Engineer
1 week ago
Bengaluru, Karnataka, India SonicWall Full time ₹ 12,00,000 - ₹ 36,00,000 per yearSonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company, ensuring our partners and their customers are never alone in the fight against cybercrime. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall...
-
Penetration Testing Staff Engineer
2 days ago
Bengaluru, Karnataka, India SonicWall Full time ₹ 15,00,000 - ₹ 42,00,000 per yearSonicWall is a cybersecurity forerunner with more than 30 years of expertise and is recognized as a leading partner-first company, ensuring our partners and their customers are never alone in the fight against cybercrime. With the ability to build, scale and manage security across the cloud, hybrid and traditional environments in real-time, SonicWall...
-
Bengaluru, Karnataka, India Prudential plc Full time ₹ 12,00,000 - ₹ 36,00,000 per yearPrudential's purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and we support our...
-
Penetration Tester
7 days ago
Bengaluru, Karnataka, India Happiest Minds Technologies Full time ₹ 8,00,000 - ₹ 12,00,000 per yearSr. Penetration Testing engineerMandatory SkillsPenetration Testing, Web App, Mobile, Web Services/APIs, Network & blockchain.Skill to EvaluatePenetration-TestingExperience4 to 6 YearsLocationBengaluruJob DescriptionMaintain a good relationship with key stakeholders including business, other Application & ISO teams to deliver on security requirements...
-
Penetration Tester
7 days ago
Bengaluru, Karnataka, India Ntech IT Solutions Private Limited Full time ₹ 23,04,000 - ₹ 30,72,000 per yearTitle: Penetration TesterLocation: Bangalore (Hybrid)Job Type: Contract to HireOpenings: Years of exp needed)Must have skills - Offensive Security, Penetration Testing, Red TeamingPosition SummaryWe are seeking an experienced application penetration tester with expertise in both manual and automated testing to join our Security and Privacy Risk Consulting...
-
Penetration Tester
4 hours ago
Bengaluru, Karnataka, India ACL Digital Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob PurposeAs a Senior Penetration Tester, your primary role is to assess and enhance the security of our information systems, networks, and applications through comprehensive penetration testing and vulnerability assessments. You will work closely with our internal product teams to identify weaknesses in their systems and provide actionable recommendations...
-
Penetration Tester
2 days ago
Bengaluru, Karnataka, India Siemens Healthineers Full time ₹ 12,00,000 - ₹ 18,00,000 per yearAre you tired from hacking the same network every single day for the past year? Come and join us in hunting vulnerabilities in a highly dynamic environment. Hundreds of projects are waiting for you.Together we will shape cybersecurity for healthcare. You are welcome to join our team in Bangalore. Your tasks will be the following:Execute penetration tests and...
