Web Application Penetration Testing
1 week ago
Roles & responsibilities
Manage cyber threat management projects and lead day-to-day
red team operations.
Plan, scope and conduct complex red team engagements:
external/internal network, Active Directory, cloud
(AWS/Azure/GCP), web & API, mobile backends, and
physical/social engineering components (phishing, vishing,
in-person tests).
Conduct comprehensive web & API testing: reconnaissance,
authenticated/unauthenticated testing, injection flaws
(SQLi/NoSQLi), RCE, SSRF, XSS, IDOR, broken
authentication/authorization, logic flaws, insecure deserialization,
unsafe file uploads and API misconfigurations; chain findings into
host footholds.
Conduct network & infrastructure testing: perimeter and internal
assessments, host/service enumeration, CVE-based exploitation,
pivoting, lateral movement, privilege escalation, persistence and
attack path mapping.
Execute Active Directory compromise exercises: Kerberos
abuse, Golden/Silver Ticket, ACL abuse, user/group privilege
escalation and Group Policy weaknesses.
Simulate stealthy adversary tradecraft (MITRE ATT&CK)
including OpSec, EDR/AV evasion, SIEM evasion and covert
payload delivery (HTML smuggling, advanced delivery chains).
Design, develop and customize offensive tooling and exploits;
maintain red team infrastructure (C2, payloads, automation).
Conduct cloud adversarial simulations: identity abuse,
misconfiguration chaining, and privilege escalation across cloud
services.
Plan and run social engineering campaigns and measure human
susceptibility; craft realistic pretexts using OSINT
Come as
you are
at KGS
As a firm, we are deeply
committed to diversity,
inclusion and equity at our
workplace. We offer a safe
and inclusive environment
built on trust, where all our
colleagues can bring their
authentic selves to work
and know that their
uniqueness is valued.
We prohibit unfair
treatment of applicants and
employees and
discrimination on any
ground, including but not
limited to, caste, religion,
color, ancestry, marital
status, medical condition,
sex, gender identity and/or
expression, sexual
orientation, age,
nationality, cultural origin,
family or parental status,
defense veterans,
physical, mental or
sensory disability or any
other status or
characteristic protected by
applicable Indian laws and
regulations.
Mandatory technical &
functional skills
Conduct red team exercises to evaluate and enhance the
organization's security posture. These exercises simulate
real-world attack scenarios to identify areas of weakness and
improve defenses.
Key activities include planning and executing simulated
attacks, analyzing security gaps, and providing actionable
recommendations for remediation
4+ years of professional experience in cybersecurity, with a
focus on Web application penetration testing.
Strong background in cybersecurity with a focus on
penetration testing.
Experience in Web and Network PT.
Relevant certifications such as OSCP, CRTP,CRTO.
Proficient in threat modeling and vulnerability exploitation
techniques.
Excellent analytical and problem-solving skills.
-
web application penetration testing
2 weeks ago
Bengaluru, Karnataka, India Randstad MENA Full time ₹ 20,00,000 - ₹ 25,00,000 per yearJob Description Job Offer Closes: 25 November 2025Summary Location: Bengaluru, KarnatakaCompany: A client of Randstad IndiaType: Temporary Posted: 26 September 2025Reference Number: JPC Next StepsContact the recruiter See similar jobs Set a job alert Create an account Search jobs Job Details Mandatory Technical & Functional SkillsPerform manual...
-
Bengaluru, Karnataka, India Careernet Full time ₹ 8,00,000 - ₹ 24,00,000 per yearKey Skills: Penetration Testing, Vulnerabilities, Web Application Security, Manual Testing.Roles & Responsibilities:Conduct manual application penetration tests on web applications, internal applications, APIs, and mobile applications to discover and exploit vulnerabilities.Independently research new vulnerabilities in systems and software, modifying and...
-
Penetration Tester
4 days ago
Bengaluru, Karnataka, India Artech Full time ₹ 15,00,000 - ₹ 20,00,000 per yearRole & responsibilitiesMandatory technical & functional skillsPerform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs and mobile applications3 to 9 years of professional experience in cybersecurity, with a focus on Web application penetration...
-
Manager, , EthicalHacking & Penetration Testing
2 weeks ago
Bengaluru, Karnataka, India Prudential Plc Full time ₹ 12,00,000 - ₹ 36,00,000 per yearPrudential's purpose is to be partners for every life and protectors for every future. Our purpose encourages everything we do by creating a culture in which diversity is celebrated and inclusion assured, for our people, customers, and partners. We provide a platform for our people to do their best work and make an impact to the business, and we support our...
-
Penetration Tester
1 hour ago
Bengaluru, Karnataka, India Happiest Minds Technologies Full time ₹ 8,00,000 - ₹ 12,00,000 per yearSr. Penetration Testing engineerMandatory SkillsPenetration Testing, Web App, Mobile, Web Services/APIs, Network & blockchain.Skill to EvaluatePenetration-TestingExperience4 to 6 YearsLocationBengaluruJob DescriptionMaintain a good relationship with key stakeholders including business, other Application & ISO teams to deliver on security requirements...
-
Penetration Tester
2 weeks ago
Bengaluru, Karnataka, India Spectral Consultants Full time ₹ 15,00,000 - ₹ 25,00,000 per yearJob Opportunity: Penetration Tester(certification is Required)Experience - 3-6 YearsLocation - Bangalore (Hybrid)Key ResponsibilitiesPerform network, web, and application penetration testing using industry-leading tools and methodologies.Conduct vulnerability assessments and exploit testing with tools such as Nessus, Nmap, Metasploit, Burp Suite Pro ...
-
Penetration Tester
1 week ago
Bengaluru, Karnataka, India Kotak Mahindra Bank Full time ₹ 6,00,000 - ₹ 12,00,000 per yearSoftware Test Engineering II-SUPPORT SERVICES-Applications-CTB Job Title: Penetration Tester (Web Applications and REST APIs) Location: Bengaluru Job Type: Full-time About Us: Kotak Mahindra Bank is seeking an experienced Penetration Tester to join our Platform Engineering team. As a Penetration Tester, you will be responsible for identifying...
-
Penetration Tester
2 weeks ago
Bengaluru, Karnataka, India Quest Global Full time ₹ 15,00,000 - ₹ 25,00,000 per yearJob Requirements Penetration Test Engineer – Product Cyber Security - We are looking for an experienced and certified Embedded and Application Penetration Tester to join our Product Cybersecurity team. In this role, you will be responsible for conducting comprehensive security assessments of our products including embedded devices, web applications,...
-
Bengaluru, Karnataka, India KPMG Global Services Full time ₹ 4,20,000 - ₹ 12,60,000 per yearWe are recruiting candidates with 3-6 years of relevant prior experience in penetration testing. Primary Technical SkillsWeb application penetration testing API penetration testing Network penetration testing Vulnerability assessmentsAdditionally, knowledge of mobile application pentesting, application security, vulnerability management, configuration...
-
Penetration Tester
2 days ago
Bengaluru, Karnataka, India Ntech IT Solutions Private Limited Full time ₹ 23,04,000 - ₹ 30,72,000 per yearTitle: Penetration TesterLocation: Bangalore (Hybrid)Job Type: Contract to HireOpenings: Years of exp needed)Must have skills - Offensive Security, Penetration Testing, Red TeamingPosition SummaryWe are seeking an experienced application penetration tester with expertise in both manual and automated testing to join our Security and Privacy Risk Consulting...
