CyberSecIT

📍 Remote / On-site (project dependent)💼 Remote / On-site🕑 6+ years🗓️ Posted: 21-11-2025

Job Description

Senior VAPT Professional required for network, application, configuration and cloud security assessments. Strong hands-on experience across infra, application, CI/CD and container environments. Immediate joiners preferred; role can be remote or on-site depending on project.

Required Qualification

6+ years hands-on experience in VAPT, network and application penetration testing. Proven experience auditing cloud security (AWS/Azure/GCP), IAM, logging/monitoring and cloud-native controls. Experience reviewing CI/CD pipelines, IaC (Terraform/CloudFormation) and container/Kubernetes security. Strong tooling experience: Nmap, Nessus/Tenable, Burp Suite, Metasploit, Snyk/Trivy, kube-bench, container scanners, and related tooling. Scripting/automation skills (Python, Bash, or similar) and solid report-writing ability. Relevant certifications (OSCP, CRTP, CISSP, or cloud certs) are a plus.

Responsibilities

Plan and execute vulnerability assessments and penetration tests for networks, applications (web/mobile/API) and cloud environments. Perform configuration reviews, CI/CD pipeline security assessments and container/Kubernetes security reviews. Develop reproducible PoCs, provide remediation guidance and validate fixes with retesting. Collaborate with engineering, DevOps and cloud teams to integrate security into the SDLC and deployment pipelines. Support vulnerability lifecycle management, risk prioritisation and reporting to stakeholders. Contribute to detection of misconfigurations, insecure deployments and unsafe container images; recommend hardening. Mentor junior testers and contribute to security tooling and automation.

Apply via Email