
Penetration Tester
1 hour ago
Software Test Engineering II-SUPPORT SERVICES-Applications-CTB
Job Title: Penetration Tester (Web Applications and REST APIs)
Location: Bengaluru
Job Type: Full-time
About Us:
Kotak Mahindra Bank is seeking an experienced Penetration Tester to join our Platform Engineering team. As a Penetration Tester, you will be responsible for identifying vulnerabilities in web applications and REST APIs, providing recommendations for remediation, and ensuring the security posture of our clients' systems.
Job Summary:
The successful candidate will have a strong background in penetration testing, including experience with various tools and techniques used to identify vulnerabilities in web applications and APIs. The ideal candidate will be able to analyze complex systems, identify potential security risks, and provide actionable recommendations for remediation.
Key Responsibilities:
- Conduct thorough penetration testing of web applications and REST APIs using a variety of tools and techniques
- Identify vulnerabilities in web applications, including but not limited to:
- SQL injection
- Cross-Site Scripting (XSS)
- Cross-Site Request Forgery (CSRF)
- Authentication and authorization weaknesses
- Session management issues
- Test REST APIs for security vulnerabilities, including but not limited to:
- Input validation and sanitization
- Error handling and logging
- Authentication and authorization mechanisms
- Data encryption and transmission
- Analyze results and provide detailed reports outlining findings, recommendations for remediation, and estimated timeframes for implementation
- Collaborate with development teams to ensure identified vulnerabilities are addressed and remediated in a timely manner
- Stay up-to-date with the latest security threats, tools, and techniques through ongoing training and professional development
Requirements:
- 3+ years of experience in penetration testing, with a focus on web applications and REST APIs
- Strong understanding of web application security concepts, including but not limited to:
- OWASP Top 10
- Web Application Security Risks (WASR)
- Secure Coding Practices
- Experience with various penetration testing tools, including but not limited to:
- Burp Suite
- ZAP
- Nmap
- AJP
- SQL injection tools (e.g. sqlmap)
- Strong understanding of REST API security concepts, including but not limited to:
- API Security Frameworks (e.g. OAuth 2.0)
- Data encryption and transmission protocols (e.g. HTTPS)
- Authentication and authorization mechanisms (e.g. JWT)
- Experience with scripting languages (e.g. Python, Ruby) is a plus
- Strong analytical and problem-solving skills
- Excellent communication and reporting skills
Nice to Have:
- CISSP or equivalent security certification
- CEH or equivalent penetration testing certification
- Experience with cloud-based services (e.g. AWS, Azure)
- Familiarity with Agile development methodologies
- Experience with DevOps tools (e.g. Docker, Jenkins)
What We Offer:
- Competitive salary and benefits package
- Opportunities for professional growth and development
- Collaborative and dynamic work environment
- Flexible working hours and remote work options
-
Penetration Tester
4 weeks ago
Bengaluru, Karnataka, India Utthunga Full timeRole: Penetration TesterExperience: 3- 5 yearsLocation: BangaloreSkills: Penetration Tester, Pen Tester, Cyber securityNotice period: Immediate- 15 days joinerRoles and Responsibilities· Test and operate security controls for various applications in compliance with the prescribed cybersecurity standards in place.· Collaborate with software architects to...
-
Penetration Tester
4 weeks ago
Bengaluru, Karnataka, India Utthunga Full timeRole: Penetration Tester Experience : 3- 5 years Location: Bangalore Skills: Penetration Tester, Pen Tester, Cyber security Notice period: Immediate- 15 days joiner Roles and Responsibilities · Test and operate security controls for various applications in compliance with the prescribed cybersecurity standards in place. · Collaborate with software...
-
Penetration Tester
3 weeks ago
Bengaluru, Karnataka, India Utthunga Full timeRole: Penetration TesterExperience: 3- 5 yearsLocation: BangaloreSkills: Penetration Tester, Pen Tester, Cyber securityNotice period: Immediate- 15 days joinerRoles and Responsibilities · Test and operate security controls for various applications in compliance with the prescribed cybersecurity standards in place.· Collaborate with software architects to...
-
Penetration Tester
3 weeks ago
Bengaluru, Karnataka, India Spectral Consultants Full timeJob Opportunity: Penetration Tester(certification is Required)Experience - 3-6 YearsLocation - Bangalore (Hybrid)Key Responsibilities- Perform network, web, and application penetration testing using industry-leading tools and methodologies.- Conduct vulnerability assessments and exploit testing with tools such as Nessus, Nmap, Metasploit, Burp Suite Pro.-...
-
Penetration Tester
3 weeks ago
Bengaluru, Karnataka, India Spectral Consultants Full timeJob Opportunity: Penetration Tester(certification is Required)Experience - 3-6 Years Location - Bangalore (Hybrid)Key ResponsibilitiesPerform network, web, and application penetration testing using industry-leading tools and methodologies.Conduct vulnerability assessments and exploit testing with tools such as Nessus, Nmap, Metasploit, Burp Suite Pro.Prepare...
-
Penetration Tester
4 days ago
Bengaluru, Karnataka, India Spectral Consultants Full time ₹ 15,00,000 - ₹ 25,00,000 per yearJob Opportunity: Penetration Tester(certification is Required)Experience - 3-6 YearsLocation - Bangalore (Hybrid)Key ResponsibilitiesPerform network, web, and application penetration testing using industry-leading tools and methodologies.Conduct vulnerability assessments and exploit testing with tools such as Nessus, Nmap, Metasploit, Burp Suite Pro ...
-
Penetration Tester
7 days ago
Bengaluru, Karnataka, India Computacenter Full time ₹ 12,00,000 - ₹ 36,00,000 per yearLife on the teamA highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our...
-
Penetration Tester
5 days ago
Bengaluru, Karnataka, India Staffington Global Full time ₹ 12,00,000 - ₹ 36,00,000 per yearDuties and Responsibilities:o Looking atleast 8+ Years of experience in Penetration Testing.o Conduct penetration tests on a wide range of digital products, including networks, web, and mobile applications, to identify vulnerabilities and security weaknesses.o Collaborate with internal product teams to understand their set-ups, goals, and constraints.o...
-
Penetration Tester
2 days ago
Bengaluru, Karnataka, India MWIDM Full time ₹ 15,00,000 - ₹ 25,00,000 per yearWe're Hiring – Penetration Tester | Application Security Specialist Location: Bangalore (Onsite) Experience: 4–5 years Certification: OSCP or CRTP (Mandatory) Employment Type: Full-time Key Responsibilities:Perform penetration testing & security assessments of web apps, APIs, Android, iOS, cloud, embedded systems, and networks.Conduct threat modelling...
-
Penetration Tester
2 days ago
Bengaluru, Karnataka, India emagine Full time ₹ 15,00,000 - ₹ 25,00,000 per yearAssignment descriptionSummary:We are seeking a skilled and detail-oriented Application Security Penetration Tester to join our cybersecurity team. The primary goal of this role is to ensure secure software delivery by planning, executing, and documenting penetration tests on enterprise applications, identifying vulnerabilities, and supporting remediation...