Penetration Tester
1 day ago
Software Test Engineering II-SUPPORT SERVICES-Applications-CTB
Job Title: Penetration Tester (Web Applications and REST APIs)
Location: Bengaluru
Job Type: Full-time
About Us:
Kotak Mahindra Bank is seeking an experienced Penetration Tester to join our Platform Engineering team. As a Penetration Tester, you will be responsible for identifying vulnerabilities in web applications and REST APIs, providing recommendations for remediation, and ensuring the security posture of our clients' systems.
Job Summary:
The successful candidate will have a strong background in penetration testing, including experience with various tools and techniques used to identify vulnerabilities in web applications and APIs. The ideal candidate will be able to analyze complex systems, identify potential security risks, and provide actionable recommendations for remediation.
Key Responsibilities:
- Conduct thorough penetration testing of web applications and REST APIs using a variety of tools and techniques
- Identify vulnerabilities in web applications, including but not limited to:
- SQL injection
- Cross-Site Scripting (XSS)
- Cross-Site Request Forgery (CSRF)
- Authentication and authorization weaknesses
- Session management issues
- Test REST APIs for security vulnerabilities, including but not limited to:
- Input validation and sanitization
- Error handling and logging
- Authentication and authorization mechanisms
- Data encryption and transmission
- Analyze results and provide detailed reports outlining findings, recommendations for remediation, and estimated timeframes for implementation
- Collaborate with development teams to ensure identified vulnerabilities are addressed and remediated in a timely manner
- Stay up-to-date with the latest security threats, tools, and techniques through ongoing training and professional development
Requirements:
- 3+ years of experience in penetration testing, with a focus on web applications and REST APIs
- Strong understanding of web application security concepts, including but not limited to:
- OWASP Top 10
- Web Application Security Risks (WASR)
- Secure Coding Practices
- Experience with various penetration testing tools, including but not limited to:
- Burp Suite
- ZAP
- Nmap
- AJP
- SQL injection tools (e.g. sqlmap)
- Strong understanding of REST API security concepts, including but not limited to:
- API Security Frameworks (e.g. OAuth 2.0)
- Data encryption and transmission protocols (e.g. HTTPS)
- Authentication and authorization mechanisms (e.g. JWT)
- Experience with scripting languages (e.g. Python, Ruby) is a plus
- Strong analytical and problem-solving skills
- Excellent communication and reporting skills
Nice to Have:
- CISSP or equivalent security certification
- CEH or equivalent penetration testing certification
- Experience with cloud-based services (e.g. AWS, Azure)
- Familiarity with Agile development methodologies
- Experience with DevOps tools (e.g. Docker, Jenkins)
What We Offer:
- Competitive salary and benefits package
- Opportunities for professional growth and development
- Collaborative and dynamic work environment
- Flexible working hours and remote work options
-
Penetration Tester
7 days ago
Bengaluru, Karnataka, India ACL Digital Full time ₹ 12,00,000 - ₹ 36,00,000 per yearJob PurposeAs a Senior Penetration Tester, your primary role is to assess and enhance the security of our information systems, networks, and applications through comprehensive penetration testing and vulnerability assessments. You will work closely with our internal product teams to identify weaknesses in their systems and provide actionable recommendations...
-
Penetration Tester
3 days ago
Bengaluru, Karnataka, India Spectral Consultants Full time ₹ 15,00,000 - ₹ 25,00,000 per yearJob Opportunity: Penetration Tester(certification is Required)Experience - 3-6 YearsLocation - Bangalore (Hybrid)Key ResponsibilitiesPerform network, web, and application penetration testing using industry-leading tools and methodologies.Conduct vulnerability assessments and exploit testing with tools such as Nessus, Nmap, Metasploit, Burp Suite Pro ...
-
Penetration Tester
2 weeks ago
Bengaluru, Karnataka, India Ntech IT Solutions Private Limited Full time ₹ 23,04,000 - ₹ 30,72,000 per yearTitle: Penetration TesterLocation: Bangalore (Hybrid)Job Type: Contract to HireOpenings: Years of exp needed)Must have skills - Offensive Security, Penetration Testing, Red TeamingPosition SummaryWe are seeking an experienced application penetration tester with expertise in both manual and automated testing to join our Security and Privacy Risk Consulting...
-
Penetration Tester
1 week ago
Bengaluru, Karnataka, India, Karnataka ACL Digital Full timeJob Purpose As a Senior Penetration Tester, your primary role is to assess and enhance the security of our information systems, networks, and applications through comprehensive penetration testing and vulnerability assessments. You will work closely with our internal product teams to identify weaknesses in their systems and provide actionable recommendations...
-
Penetration Tester
1 week ago
Bengaluru, Karnataka, India Computacenter Full time ₹ 12,00,000 - ₹ 36,00,000 per yearLife on the teamA highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our...
-
Senior Penetration Tester
2 weeks ago
Bengaluru, Karnataka, India SSquad Global Full time ₹ 78,700 - ₹ 10,00,000 per yearWe're Hiring: Penetration Tester (Immediate Joiner)Location: Bangalore (Work from Office, 5 Days)Company: Ssquad Global )Experience: 3+ YearsAvailability: Immediate Joiners OnlyInterview Mode: Virtual,Ssquad Global is seeking a skilled and passionate Senior Penetration Tester to join our cybersecurity team at our Bangalore office. If you're a security...
-
Penetration Tester
5 days ago
Bengaluru, Karnataka, India Staffington Global Full time ₹ 12,00,000 - ₹ 36,00,000 per yearDuties and Responsibilities:o Looking atleast 8+ Years of experience in Penetration Testing.o Conduct penetration tests on a wide range of digital products, including networks, web, and mobile applications, to identify vulnerabilities and security weaknesses.o Collaborate with internal product teams to understand their set-ups, goals, and constraints.o...
-
Penetration Tester
3 days ago
Bengaluru, Karnataka, India MWIDM Full time ₹ 15,00,000 - ₹ 25,00,000 per yearWe're Hiring – Penetration Tester | Application Security Specialist Location: Bangalore (Onsite) Experience: 4–5 years Certification: OSCP or CRTP (Mandatory) Employment Type: Full-time Key Responsibilities:Perform penetration testing & security assessments of web apps, APIs, Android, iOS, cloud, embedded systems, and networks.Conduct threat modelling...
-
Penetration Tester
3 days ago
Bengaluru, Karnataka, India emagine Full time ₹ 15,00,000 - ₹ 25,00,000 per yearAssignment descriptionSummary:We are seeking a skilled and detail-oriented Application Security Penetration Tester to join our cybersecurity team. The primary goal of this role is to ensure secure software delivery by planning, executing, and documenting penetration tests on enterprise applications, identifying vulnerabilities, and supporting remediation...
-
Penetration Tester
3 days ago
Bengaluru, Karnataka, India Quest Global Full time ₹ 15,00,000 - ₹ 25,00,000 per yearJob Requirements Penetration Test Engineer – Product Cyber Security - We are looking for an experienced and certified Embedded and Application Penetration Tester to join our Product Cybersecurity team. In this role, you will be responsible for conducting comprehensive security assessments of our products including embedded devices, web applications,...
