23 Netsparker Jobs

As an R&D Engineer, where you'll drive security and performance in cutting-edge cloud-native technologies. You'll take the lead in managing end-to-end responses for security vulnerabilities in Kafka, RabbitMQ, and Kubernetes ingress controllersanalyzing CVEs, prioritizing risks, and working closely with developers to deliver effective fixes. You'll also run advanced scans using tools like Burp, Anchore, and Malware scanners, ensuring open-source components meet the highest standards. Alongside security, you'll contribute to delivering robust Kafka, RabbitMQ, and Ingress Controller solutions as per CSF specifications. You Have: Bachelor's or Master's degree in Engineering or equivalent with 38 years of hands-on experience in software development or testing, with strong expertise in messaging open-source tools like Kafka, RabbitMQ, and Ingress Controllers. Proficient in Python programming, with the ability to build and automate robust test and development workflows Skilled in working with microservices architectures and container technologies such as Docker, Kubernetes, Helm charts, Operators, and virtualization platforms Experienced in implementing CI/CD pipelines and DevOps best practices for scalable, efficient software delivery Well-versed in security protocols (TLS, SSH), encryption techniques, and security principles including threat analysis, hardening, and vulnerability scanning (container/non-container, web apps, DoS, penetration testing) Good to have: Familiarity with security tools like Anchore, Tenable, Netsparker, Codenomicon, Nmap, etc. Experience in SBOM (Software Bill of Materials) generation. Lead the end-to-end response process for security vulnerabilities in Kafka, RabbitMQ, and Kubernetes ingress controllers. Analyze and prioritize Common Vulnerabilities and Exposures (CVEs), collaborating with development teams to implement timely and effective remediation. Execute security scans using tools like Burp, Anchore, Malware scanners, and Codenomicon, and assess severity based on open-source software usage. Ensure secure and stable integration of open-source components within the cloud-native platform. Develop and test Kafka, RabbitMQ, and Ingress Controller components in alignment with CSF specifications.

Company Profile: Lennox International has been built on a heritage of integrity and innovation dating back to 1895. We are dedicated to providing trusted brands, innovative products and unsurpassed quality with responsive service. We are a Fortune 500 company and a world leader in residential and commercial heating, cooling, ventilation and refrigeration systems. We have started our operations in India in Chennai in 2010. Lennox India Technology Centre is a R&D Centre with Mechanical Analysis, Embedded – Software, Hardware and IT divisions. Our companies are spread across U.S, Europe, Asia Pacific and Australia Department: Absorbing the latest technologies and providing world class, efficient and quick deliverables to all within the organization and beyond – this is what we strive for. It is an everchanging process. Some things stay, some more evolve and some others take on a new path. It all converges to one factor – to deliver the best in the industry. We are a diverse stratum with similar goals and open culture. We work independently and yet together. The waft of a culture that nurtures you, lets you be seen and lets you be heard is what differentiates this part of Lennox International Inc. from all other companies. The IT department works with sharp-cut enterprise architecture and ensures compliance in every step. While these align us with the company policies, innovation and improvisation is always underway. With the best tools with hands-on like SAP, HANA, Hybris, Qlik, O365, DataBricks, R, EBX, Thingworx, Fortify, Netsparker, TestPlans, Selenium, CAD, TeamCenter and more!! Hop on our bandwagon and join the community. Responsibilities: Define the business use cases to support the operational business initiative • Define use cases for POC (proof of concept), as appropriate • Identifies and communicates risks (business, application, technical) associated with component or application implementation at the business level, and enterprise level • Participates in business and architecture planning sessions and anticipates future business and architecture changes and strategies • Responsible for devising solutions, solution architecture descriptions, and subsequent monitoring and governance of their implementation • Translates business objectives and processes into a conceptual architecture that describes key functional and non-functional requirements • Accountable for quality of the solution through the SDLC process. • Documents the “as-is” business process and use value stream mapping techniques to identify and unclog process bottlenecks. Requirements/Qualification: Strong functional configuration experience with ERP Systems (SAP) in modules such as SD (Sales & Distribution) & SAP GTS • Domain experience – Core Manufacturing / Logistics • SAP SD with extensive GTS experience • SAP GTS concepts (Foreign trade data, Compliance, Customs, Risk, Reporting etc) • Experience working on Logistics execution. • SAP Pricing, EDI & OTC process with integration with MM & FICO. • High level of motivation, self-starter, excellent at follow-up, team-player with ability to deliver within defined timelines • Advanced written and oral communication skills required • Advanced skills in preparing and delivering presentations required Qualifications • Requires a bachelor’s degree or equivalent combination of education and experience. • Requires at least 10 years of related experience. • A background in SAP SD & GTS and management exposure is a must have. • Ability to lead projects with an end-to-end view into planning, organization and execution • Excellent written, verbal, and presentation communication skills • Excellent analytical and technical skills • High level of motivation, self-starter, excellent at follow-up, team-player with ability to deliver within defined timelines, work under limited supervision and oversight • Willing to travel periodically based on business need

Avant de postuler à un emploi, sélectionnez votre langue de préférence parmi les options disponibles en haut à droite de cette page. Découvrez votre prochaine opportunité au sein d'une organisation qui compte parmi les 500 plus importantes entreprises mondiales. Envisagez des opportunités innovantes, découvrez notre culture enrichissante et travaillez avec des équipes talentueuses qui vous poussent à vous développer chaque jour. Nous savons ce qu’il faut faire pour diriger UPS vers l'avenir : des personnes passionnées dotées d’une combinaison unique de compétences. Si vous avez les qualités, de la motivation, de l'autonomie ou le leadership pour diriger des équipes, il existe des postes adaptés à vos aspirations et à vos compétences d'aujourd'hui et de demain. Job Summary Fiche de poste : This position provides leadership in full systems life cycle management (e.g., analyses, technical requirements, design, coding, testing, implementation of systems and applications software, etc.) to ensure delivery is on time and within budget. He/She directs component and data architecture design, technology planning, and testing for Applications Development (AD) initiatives to meet business requirements and ensure compliance. This position develops and leads AD project activities and integrations. He/She guides teams to ensure effective communication and achievement of objectives. This position researches and supports the integration of emerging technologies. He/She provides knowledge and support for applications’ development, integration, and maintenance. This position leads junior team members with project related activities and tasks. He/She guides and influences department and project teams. This position facilitates collaboration with stakeholders. Responsibilities S upport the maintenance, development, and support of the APCS. This requires collaboration between the Application Team, Interfacing Application, Business Users, and Support Groups. Develop a deep understanding of the application and the interfacing applications. Responsibilities include support and maintenance of the application infrastructure, support of security patches, participation/leading OS upgrades, Production Support for End User technical issues. Development activities typically include updating application to support new countries. Maintain a secure application, mitigating risks as determined by Netsparker and/or SonarQube. Involvement in Agile development including the analysis of requirements, estimating, design, code, test and deployment to meet business requirements. Collaborates with team and supports the integration of emerging technologies to ensure effective communication and achievement of objectives. Tech Stack Java-Spring framework, REST webservices, SOAP webservices, Core Java, J2EE,JDBC, Servlet ,JSP,Frameworks-Spring, Spring MVC, Spring Boot, Hibernate, Linux, MS SQL, Windows Server Web/Application Servers - WebLogic Databases-MySQL and SQL Servers Qualifications Bachelor’s Degree or International equivalent Bachelor's Degree or International equivalent in Computer Science, Information Systems, Mathematics, Statistics, or related field - Preferred Type De Contrat en CDI Chez UPS, égalité des chances, traitement équitable et environnement de travail inclusif sont des valeurs clefs auxquelles nous sommes attachés.

Before you apply to a job, select your language preference from the options available at the top right of this page. Explore your next opportunity at a Fortune Global 500 organization. Envision innovative possibilities, experience our rewarding culture, and work with talented teams that help you become better every day. We know what it takes to lead UPS into tomorrow—people with a unique combination of skill + passion. If you have the qualities and drive to lead yourself or teams, there are roles ready to cultivate your skills and take you to the next level. Job Description Job Summary This position provides leadership in full systems life cycle management (e.g., analyses, technical requirements, design, coding, testing, implementation of systems and applications software, etc.) to ensure delivery is on time and within budget. He/She directs component and data architecture design, technology planning, and testing for Applications Development (AD) initiatives to meet business requirements and ensure compliance. This position develops and leads AD project activities and integrations. He/She guides teams to ensure effective communication and achievement of objectives. This position researches and supports the integration of emerging technologies. He/She provides knowledge and support for applications’ development, integration, and maintenance. This position leads junior team members with project related activities and tasks. He/She guides and influences department and project teams. This position facilitates collaboration with stakeholders. Responsibilities S upport the maintenance, development, and support of the APCS. This requires collaboration between the Application Team, Interfacing Application, Business Users, and Support Groups. Develop a deep understanding of the application and the interfacing applications. Responsibilities include support and maintenance of the application infrastructure, support of security patches, participation/leading OS upgrades, Production Support for End User technical issues. Development activities typically include updating application to support new countries. Maintain a secure application, mitigating risks as determined by Netsparker and/or SonarQube. Involvement in Agile development including the analysis of requirements, estimating, design, code, test and deployment to meet business requirements. Collaborates with team and supports the integration of emerging technologies to ensure effective communication and achievement of objectives. Tech Stack Java-Spring framework, REST webservices, SOAP webservices, Core Java, J2EE,JDBC, Servlet ,JSP,Frameworks-Spring, Spring MVC, Spring Boot, Hibernate, Linux, MS SQL, Windows Server Web/Application Servers - WebLogic Databases-MySQL and SQL Servers Qualifications Bachelor’s Degree or International equivalent Bachelor's Degree or International equivalent in Computer Science, Information Systems, Mathematics, Statistics, or related field - Preferred Employee Type Permanent UPS is committed to providing a workplace free of discrimination, harassment, and retaliation.

Company Description About CyberArk : CyberArk (NASDAQ: CYBR), is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine – across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world’s leading organizations trust CyberArk to help secure their most critical assets. To learn more about CyberArk, visit our CyberArk blogs or follow us on X, LinkedIn or Facebook. Job Description Responsibilities: Collaborate with engineering teams on architecting, implementing technologies, processes, and improvements around product security by performing threat models, penetrations tests, and sharing security expertise. Develop security testing plans to identify misconfigurations, vulnerabilities, and visibility shortfalls. Assist, mentor, and educate about internal secure development methodologies and CyberArk "Security Champions" program. Critical skills: 4+ years of experience working in the software development industry as a test engineer or an engineer with responsibilities relating to security. Background in Whitebox penetration testing. Bachelor’s degree in Computer Science, Computer Information Systems, Software Engineering, or Mathematics or a related field, or its equivalent. Programming experience in one or more languages (Java, JavaScript, Python, Shell/BASH, C/C, C#). Qualifications Desirable skills: OSCP certification a huge plus. Experience with web application scanning tools (e.g. Static / Dynamic, Interactive, etc.) including Qualys WAS, Appspider, Acutenitx, Veracode, Burp Suite, Netsparker, OWASP Zap, Checkmarx, Whitesource, Snyk or similar. Past development expertise or operational or consultative experience supporting application security teams. Threat modeling experience. Experience using source code management tools such as Perforce, GIT or equivalent. Strong debugging skills and experience performing security code reviews. Experience with Active Directory and/or LDAP. Understanding of PKI, Certificate security, encryption, HTTPS. Strong written and oral communication and collaboration skills, ability to collaborate effectively in team, across team and with management and other disciplines. Experience working with product management, engineering and ops to help them buy into a potentially disruptive, but important, security update/change. Demonstrated security research activities (e.g. participation in bug bounties or credit for reporting CVEs). Show more Show less

Company Profile: Lennox (NYSE: LII) Driven by 130 years of legacy, HVAC and refrigeration success, Lennox provides our residential and commercial customers with industry-leading climate-control solutions. At Lennox, we win as a team, aiming for excellence and delivering innovative, sustainable products and services. Our culture guides us and creates a workplace where all employees feel heard and welcomed. Lennox is a global community that values each team member’s contributions and offers a supportive environment for career development. Come, stay, and grow with us. Job Description: Manage tracking and remediation of vulnerabilities. Collaborate with development and support teams to ensure timely remediation using agreed action plans and timelines . Integrate business risk understanding into security operations . Apply security expertise to assess and protect business-critical web applications . Qualifications: 0-2 years of relevant experience Master’s Degree from a reputed institute with good academics history. Experience in Web Application VAPT – DAST . Strong knowledge of the OWASP framework and methodologies . Experience with web application vulnerability scanning tools : IBM AppScan, HP WebInspect, Acunetix, Netsparker, NTO Spider, Burp Suite Pro. Proficient in Kali Linux penetration testing tools : e.g., SQLMAP, DirBuster. Understanding of web services technologies : XML, SOAP, and SAML. Good understanding of HTML and JavaScript . (Preferred) Proficiency in Front End (.NET, Java) and Back End (Oracle) technologies. (Preferred) Experience with code scanning tools : Fortify, Checkmarx, Veracode. Exposure to common vulnerabilities : SQL Injection, XSS, CSRF, and participation in bug bounty programs. Strong communication and interpersonal skills . Professional Certification : CEH (mandatory) OSCP (preferred / big plus

Company Profile Lennox (NYSE: LII) Driven by 130 years of legacy, HVAC and refrigeration success, Lennox provides our residential and commercial customers with industry-leading climate-control solutions. At Lennox, we win as a team, aiming for excellence and delivering innovative, sustainable products and services. Our culture guides us and creates a workplace where all employees feel heard and welcomed. Lennox is a global community that values each team member’s contributions and offers a supportive environment for career development. Come, stay, and grow with us. Job Description Manage tracking and remediation of vulnerabilities. Collaborate with development and support teams to ensure timely remediation using agreed action plans and timelines. Integrate business risk understanding into security operations. Apply security expertise to assess and protect business-critical web applications. Qualifications 0-2 years of relevant experience Master’s Degree from a reputed institute with good academics history. Experience in Web Application VAPT – DAST. Strong knowledge of the OWASP framework and methodologies. Experience with web application vulnerability scanning tools: IBM AppScan, HP WebInspect, Acunetix, Netsparker, NTO Spider, Burp Suite Pro. Proficient in Kali Linux penetration testing tools: e.g., SQLMAP, DirBuster. Understanding of web services technologies: XML, SOAP, and SAML. Good understanding of HTML and JavaScript. (Preferred) Proficiency in Front End (.NET, Java) and Back End (Oracle) technologies. (Preferred) Experience with code scanning tools: Fortify, Checkmarx, Veracode. Exposure to common vulnerabilities: SQL Injection, XSS, CSRF, and participation in bug bounty programs. Strong communication and interpersonal skills. Professional Certification: CEH (mandatory) OSCP (preferred / big plus Show more Show less

Work Level : Middle Management Core : Problem Solving, Process Orientation Leadership : Tactical Industry Type : Technology & IT Function : Full Stack Developer Key Skills : .Net,Angular Education : PG/ Master Note: This is a requirement for one of the Workassist Hiring Partner. Roles and Responsibilities:  Must Have:  Angular 10 and above  C#, .NET Core web API development, REST, JSON  Entity Framework  .NET Core API Security (authentication authorization etc)  API automated testing using mocks, ensuring code coverage.  Good To Have:  Hands on experience designing and developing n-tier SOA\microservices using dotnet core  Troubleshooting, Profiling (performance, utilization)  OOD, Patterns: Dependency injection, adapter, factory patterns  Parallel, Async Programming (async, await etc)  Containerization (e.g. docker), Basics of Kubernetes.  Sonar Cloud, Fortify, Netsparker, Resharper Company Description Workassist is an online recruitment and employment solution platform based in Lucknow, India. We provide relevant profiles to employers and connect job seekers with the best opportunities across various industries. With a network of over 10,000+ recruiters, we help employers recruit talented individuals from sectors such as Banking & Finance, Consulting, Sales & Marketing, HR, IT, Operations, and Legal. We have adapted to the new normal and strive to provide a seamless job search experience for job seekers worldwide. Our goal is to enhance the job seeking experience by leveraging technology and matching job seekers with the right employers. For a seamless job search experience, visit our website: https://bit.ly/3QBfBU2 (Note: There are many more opportunities apart from this on the portal. Depending on the skills, you can apply for them as well). So, if you are ready for a new challenge, a great work environment, and an opportunity to take your career to the next level, don't hesitate to apply today. We are waiting for you! Show more Show less

Work Level : Middle Management Core : Problem Solving, Process Orientation Leadership : Tactical Industry Type : Technology & IT Function : Full Stack Developer Key Skills : .Net,Angular Education : PG/ Master Note: This is a requirement for one of the Workassist Hiring Partner. Roles & Responsibility : Hands on experience designing and developing n-tier SOA\microservices using dotnet core Troubleshooting, Profiling (performance, utilization) OOD, Patterns: Dependency injection, adapter, factory patterns Parallel, Async Programming (async, await etc) Containerization (e.g. docker), Basics of Kubernetes. SonarCloud, Fortify, Netsparker, Resharper Angular 10 and above C#, .NET Core web API development, REST, JSON Entity Framework .NET Core API Security (authentication authorization etc) API automated testing using mocks, ensuring code coverage. Company Description Workassist is an online recruitment and employment solution platform based in Lucknow, India. We provide relevant profiles to employers and connect job seekers with the best opportunities across various industries. With a network of over 10,000+ recruiters, we help employers recruit talented individuals from sectors such as Banking & Finance, Consulting, Sales & Marketing, HR, IT, Operations, and Legal. We have adapted to the new normal and strive to provide a seamless job search experience for job seekers worldwide. Our goal is to enhance the job seeking experience by leveraging technology and matching job seekers with the right employers. For a seamless job search experience, visit our website: https://bit.ly/3QBfBU2 (Note: There are many more opportunities apart from this on the portal. Depending on the skills, you can apply for them as well). So, if you are ready for a new challenge, a great work environment, and an opportunity to take your career to the next level, don't hesitate to apply today. We are waiting for you! Show more Show less

Primary Responsibility: Developer Company Details: We are Leading Software Service Provider, Serving for MNC client, headquarter is located in India and Branch office in USA. Job Title: Dotnet Fullstack Developer (Dotnet With Angular) Work Location: Baner, Pune. Experience: 8+ Years Educational Qualification: Degree in Computer Science or similar relevant field Roles and Responsibilities:  Must Have:  Angular 10 and above  C#, .NET Core web API development, REST, JSON  Entity Framework  .NET Core API Security (authentication authorization etc)  API automated testing using mocks, ensuring code coverage.  Good To Have:  Hands on experience designing and developing n-tier SOA\microservices using dotnet core  Troubleshooting, Profiling (performance, utilization)  OOD, Patterns: Dependency injection, adapter, factory patterns  Parallel, Async Programming (async, await etc)  Containerization (e.g. docker), Basics of Kubernetes.  SonarCloud, Fortify, Netsparker, Resharper. Company Description Workassist is an online recruitment and employment solution platform based in Lucknow, India. We provide relevant profiles to employers and connect job seekers with the best opportunities across various industries. With a network of over 10,000+ recruiters, we help employers recruit talented individuals from sectors such as Banking & Finance, Consulting, Sales & Marketing, HR, IT, Operations, and Legal. We have adapted to the new normal and strive to provide a seamless job search experience for job seekers worldwide. Our goal is to enhance the job seeking experience by leveraging technology and matching job seekers with the right employers. For a seamless job search experience, visit our website: https://bit.ly/3QBfBU2 (Note: There are many more opportunities apart from this on the portal. Depending on the skills, you can apply for them as well). So, if you are ready for a new challenge, a great work environment, and an opportunity to take your career to the next level, don't hesitate to apply today. We are waiting for you! Show more Show less

Roles and Responsibilities: Conduct Web Application VAPT (Vulnerability Assessment and Penetration Testing), focusing on DAST. Perform vulnerability scans using tools such as IBM AppScan, HP WebInspect, Acunetix, Netsparker, NTO Spider, and Burp Suite Pro. Utilize Kali Linux penetration testing tools like SQLMAP, Dirbuster, etc. Understand and apply OWASP Top 10 frameworks and methodologies in assessments. Manage tracking and remediation of vulnerabilities , coordinating with development and support teams on timelines and action plans. Analyze and communicate security risks based on business impact and context. Collaborate with internal stakeholders to ensure vulnerabilities are mitigated efficiently. Clearly document findings, reports, and progress on identified issues. Communicate effectively with technical and non-technical audiences. Requirements: Experience : 0–2 years of relevant experience in Application Security / VAPT. Education : B.E./B.Tech or Master’s Degree from a reputed institute with a strong academic background. Technical Skills : Experience with Web Application Security Testing and DAST tools. Familiarity with web technologies (HTML, JavaScript) and web services (XML, SOAP, SAML). Knowledge of front-end (.NET, Java) and back-end (Oracle) environments is a plus. Exposure to common vulnerabilities (SQL Injection, XSS, CSRF) and bug bounty programs . Experience with SAST tools such as Fortify, Checkmarx, or Veracode is an added advantage. Soft Skills : Strong communication and interpersonal skills . Ability to understand business context and translate it into security assessments. Certifications : CEH certification is mandatory . OSCP certification is a strong plus. Show more Show less

Roles and Responsibilities: Perform Dynamic Application Security Testing (DAST) on web applications and APIs (manual and tool-based). Analyze DAST scan results, identify and prioritize vulnerabilities based on risk. Participate in triage meetings with application teams to explain and document findings. Lead deep API security testing (REST, SOAP, GraphQL), identifying flaws like BOLA, token leakage, replay attacks, etc. Conduct manual penetration testing using offensive tools and custom payloads. Craft custom exploit chains for vulnerabilities such as deserialization, command injection, and broken access controls. Maintain custom scripts, payloads, and test cases to simulate real-world attacker scenarios. Possibly perform Static Application Security Testing (SAST) and understand differences from DAST. Document testing procedures, findings, and remediation efforts. Communicate security findings to both technical and non-technical stakeholders. Collaborate with DevOps, developers, and security teams to address issues. Participate in process improvements and develop long-term testing strategies. Requirements: 5 to 7 years of hands-on experience in web application security testing. Strong knowledge in: Web & API penetration testing. DAST & SAST methodologies. API security concepts and testing. Proficiency in offensive security tools and Kali Linux tools (e.g., SQLMAP, Dirbuster). Experience in identifying and exploiting common vulnerabilities (SQL Injection, XSS, CSRF, etc.). Understanding of HTML, JavaScript . Bonus for experience with: Front-end tech: .NET, Java Back-end tech: Oracle Mobile or IoT app testing. Bug bounty programs. Familiarity with tools like: DAST: Burp Suite, NetSparker SAST: Checkmarx, Veracode, Fortify Clear written and verbal communication skills. Any relevant certifications (e.g., OSCP, OSWE, GWAPT, CREST) are a plus. Experience with Red Teaming/adversary emulation is a strong advantage. Show more Show less

Line of Service Advisory Industry/Sector Not Applicable Specialism Microsoft Management Level Senior Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. Those in penetration testing at PwC will focus on penetration testing (or pen testing) which is a security exercise where a cybersecurity consultant attempts to find and exploit vulnerabilities in a computer system. The purpose of this simulated attack is to identify any weak spots in a system's defences which attackers could take advantage of. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. " Responsibilities Strong knowledge of web application security testing, API security testing Strong knowledge of Industry standard application security tools – Burp Suite, Nmap, Zap proxy Strong knowledge of Industry standard DAST tool (example: NetSparker) Strong knowledge in both static and dynamic assessments for desktop and mobile applications Strong knowledge in manual and automated testing process, focusing on OWASP methodology Strong Knowledge of vulnerability identification and remediation methodology. Knowledge of vulnerability assessments of network and security devices Strong knowledge of open source and commercial tools, proficient in Kali Linux based tools Mandatory Skill Sets VAPT, web application security testing, API security testing Preferred Skill Sets mobile security testing, DAST, penetration testing Years Of Experience Required 3+ Education Qualification B.Tech/B.E./MCA Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Engineering Degrees/Field Of Study Preferred Certifications (if blank, certifications not specified) Required Skills API Testing, Web Application Security Testing Optional Skills Penetration Testing Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date Show more Show less

Work Level : Middle Management Core : Problem Solving, Process Orientation Leadership : Tactical Industry Type : Technology & IT Function : Full Stack Developer Key Skills : .Net,Angular Education : PG/ Master Note: This is a requirement for one of the Workassist Hiring Partner. Roles and Responsibilities: Angular 10 and above C#, .NET Core web API development, REST, JSON Entity Framework .NET Core API Security (authentication authorization etc) API automated testing using mocks, ensuring code coverage. Hands on experience designing and developing n-tier SOA\microservices using dotnet core Troubleshooting, Profiling (performance, utilization) OOD, Patterns: Dependency injection, adapter, factory patterns Parallel, Async Programming (async, await etc) Containerization (e.g. docker), Basics of Kubernetes. SonarCloud, Fortify, Netsparker, Resharper Company Description Workassist is an online recruitment and employment solution platform based in Lucknow, India. We provide relevant profiles to employers and connect job seekers with the best opportunities across various industries. With a network of over 10,000+ recruiters, we help employers recruit talented individuals from sectors such as Banking & Finance, Consulting, Sales & Marketing, HR, IT, Operations, and Legal. We have adapted to the new normal and strive to provide a seamless job search experience for job seekers worldwide. Our goal is to enhance the job seeking experience by leveraging technology and matching job seekers with the right employers. For a seamless job search experience, visit our website: https://bit.ly/3QBfBU2 (Note: There are many more opportunities apart from this on the portal. Depending on the skills, you can apply for them as well). So, if you are ready for a new challenge, a great work environment, and an opportunity to take your career to the next level, don't hesitate to apply today. We are waiting for you! Show more Show less

Responsibilities:  Monitors an organization's network for potential security threats using tools like SIEM systems and intrusion detection systems.  Investigate security incidents, respond to alerts, and escalate critical issues to senior teams for resolution.  Gathering threat intelligence, conducting forensic analysis, and ensuring compliance with security standards.  Collaborate with various teams to improve security posture and enhance incident response capabilities. Required Skills:  3+ years of experience in Information Security. Hands-on Experience on working as SIEM Admin on multiple SIEMs.  Information security related experience, in areas such as: security operations, incident analysis, incident handling, and vulnerability management or testing, system patching, log analysis, intrusion detection, or firewall administration.  Experience in Security Orchestration, Automation, and Response (SOAR) and Security information and event management (SIEM) Platforms.  Working experience and knowledge of security related technologies such as intrusion prevention and detection systems, web proxies, SIEM (MS Sentinel, IBM Qradar), Endpoint, SOAR, DLP, IDS, EDR, firewalls, web application scanner, vulnerability scanners and forensics tools.  Has practical experience in auditing various applications and infrastructure.  Hands on experience with popular security tools – Nessus, Burpsuite, Netsparker, Metasploit, KALI Linux, Splunk, Tanium.  Mandatory at least one Cyber Security Certifications  Excellent communication, documentation and presentation skills Job Types: Full-time, Fresher, Internship Pay: Up to ₹900,000.00 per year Benefits: Health insurance Internet reimbursement Life insurance Provident Fund Work from home Schedule: Day shift Evening shift Monday to Friday Morning shift Night shift Rotational shift UK shift US shift Supplemental Pay: Performance bonus Yearly bonus Education: Bachelor's (Preferred) Experience: SoC: 3 years (Preferred) Work Location: In person Expected Start Date: 15/06/2025

Job Purpose The candidate will be responsible for delivering Cybersecurity trainings. Trainer also have the advantage of working on various consulting projects as well. Duties and Responsibilities Candidate will be part of the Institute of Information Security – our Training Division and will report into the Training Lead / Director / Academics Head. He / She will deliver various trainings such as below but not limited to: Application Security Testing Vulnerability Assessment and Penetration Testing Secure Coding Practices - .NET, Java, PHP etc Digital Forensics Cybersecurity Threat Modeling SIEM ISO 27001 PCI DSS Candidate will be also responsible for developing new course material. Demonstrated ability to learn and adapt to new concepts in the following areas will be a significant advantage: Devops IoT Blockchain Academic / University Qualifications Graduate / Post Graduate in Computer Science Experience 1-4 Years Professional Certifications Candidates with any of the certifications will be preferred. OSCP / OSCE CEH CCNA CCNP CISSP CISA CISM ISO 27001 LA Knowledge on Tools Candidates should know any / or all the below tools. This will be an added advantage. Kali Linux Burp Suite Fiddler Netsparker Wireshark Nikto, Acunetix WAFW00f Backtrack Metasploit Show more Show less

Job title : Security Tester (Core Backend) Vacancy Position : 02 Experience Maximum Budget for 3-5 Years : 10-15% hike or Upto 12 LPA whichever is lower About company The National e-Governance Division has been set up by the Ministry of Electronics & Information Technology as an Independent Business Division under the Digital India Corporation {erstwhile Media Lab Asia}. Since 2009, NeGD has been playing a pivotal role in supporting MeitY in Programme Management and implementation of the e-Governance Projects; providing technical and advisory support to Ministries/ Departments, both at Central and State levels along with other Government organizations. NeGDs major operational areas include programme management, project development, technology management, capacity building, awareness and communications-related activities under the flagship Digital India Programme. NeGD has developed and is managing several National Public Digital Platforms such as DigiLocker, UMANG, Rapid Assessment System, OpenForge, API Setu, Poshan Tracker, Academic Bank of Credits, National Academic Depositories, National AI Portal, MyScheme, India Stack Global, Meri Pehchaan, etc. More details can be seen at https://negd.gov.in Overview The job holder will be designing and implementing security measures to protect computer systems, networks, and data from unauthorized access, attacks, and other security threats, as well as conducting security assessments of existing systems and identifying vulnerabilities or weaknesses that need to be addressed. He/ She may be used in other projects of Digital India as well, whenever required. Roles and Responsibilities The security test engineer will be part of the audit team that shall conduct security audits for web-application security, mobile app security, Network security and IT infrastructure security. Shall be responsible for the development and execution of the individual audit tasks assigned to them and prepares a detailed report in its regards as desired. Conduct post-release/ post-implementation testing. Shall prepare VAPT (Vulnerability Assessment & Penetration Testing) reports using defined templates and assist the management for finalization of audit reports. Shall prepare the audit plans, test cases, and test scenarios to perform the security audit. Create logs to document testing phases and defects. Essential Qualification Graduation/B.E/B. Tech./ MCA or equivalent. Qualification can be relaxed in the case of exceptional candidates. Experience & Skill Experience in Vulnerability Assessment and Penetration testing. Experience in project management and QA methodology. Experience in analysing and in identifying vulnerabilities manually. Experience in web application, MobileApp and network Vulnerability Assessment & Penetration Testing. Experience in Vulnerability Assessment and Penetration testing using industry standard tools such as Vulnerability Scanners for e.g. OWASP ZAP, Nessus, Sqlmap, Acunetix, Nmap, Burp Suite Pro, Netsparker etc. Experience and knowledge of Web Application Security standards such as OWASP/SANS etc. Show more Show less

Work Level : Middle Management Core : Problem Solving, Process Orientation Leadership : Tactical Industry Type : Technology & IT Function : Full Stack Developer Key Skills : .Net,Angular Education : PG/ Master Note: This is a requirement for one of the Workassist Hiring Partner. Roles and Responsibilities:  Must Have:  Angular 10 and above  C#, .NET Core web API development, REST, JSON  Entity Framework  .NET Core API Security (authentication authorization etc)  API automated testing using mocks, ensuring code coverage.  Good To Have:  Hands on experience designing and developing n-tier SOA\microservices using dotnet core  Troubleshooting, Profiling (performance, utilization)  OOD, Patterns: Dependency injection, adapter, factory patterns  Parallel, Async Programming (async, await etc)  Containerization (e.g. docker), Basics of Kubernetes.  SonarCloud, Fortify, Netsparker, Resharper Company Description Workassist is an online recruitment and employment solution platform based in Lucknow, India. We provide relevant profiles to employers and connect job seekers with the best opportunities across various industries. With a network of over 10,000+ recruiters, we help employers recruit talented individuals from sectors such as Banking & Finance, Consulting, Sales & Marketing, HR, IT, Operations, and Legal. We have adapted to the new normal and strive to provide a seamless job search experience for job seekers worldwide. Our goal is to enhance the job seeking experience by leveraging technology and matching job seekers with the right employers. For a seamless job search experience, visit our website: https://bit.ly/3QBfBU2 (Note: There are many more opportunities apart from this on the portal. Depending on the skills, you can apply for them as well). So, if you are ready for a new challenge, a great work environment, and an opportunity to take your career to the next level, don't hesitate to apply today. We are waiting for you! Show more Show less

Work Level : Middle Management Core : Problem Solving, Process Orientation Leadership : Tactical Industry Type : Technology & IT Function : Full Stack Developer Key Skills : .Net,Angular Education : PG/ Master Note: This is a requirement for one of the Workassist Hiring Partner Roles and Responsibilities:  Must Have:  Angular 10 and above  C#, .NET Core web API development, REST, JSON  Entity Framework  .NET Core API Security (authentication authorization etc)  API automated testing using mocks, ensuring code coverage.  Good To Have:  Hands on experience designing and developing n-tier SOA\microservices using dotnet core  Troubleshooting, Profiling (performance, utilization)  OOD, Patterns: Dependency injection, adapter, factory patterns  Parallel, Async Programming (async, await etc)  Containerization (e.g. docker), Basics of Kubernetes.  SonarCloud, Fortify, Netsparker, Resharper Company Description Workassist is an online recruitment and employment solution platform based in Lucknow, India. We provide relevant profiles to employers and connect job seekers with the best opportunities across various industries. With a network of over 10,000+ recruiters, we help employers recruit talented individuals from sectors such as Banking & Finance, Consulting, Sales & Marketing, HR, IT, Operations, and Legal. We have adapted to the new normal and strive to provide a seamless job search experience for job seekers worldwide. Our goal is to enhance the job seeking experience by leveraging technology and matching job seekers with the right employers. For a seamless job search experience, visit our website: https://bit.ly/3QBfBU2 (Note: There are many more opportunities apart from this on the portal. Depending on the skills, you can apply for them as well). So, if you are ready for a new challenge, a great work environment, and an opportunity to take your career to the next level, don't hesitate to apply today. We are waiting for you! Show more Show less

Line of Service Advisory Industry/Sector Not Applicable Specialism Risk Management Level Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation's security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. Job Description & Summary: In-depth knowledge and hands-on experience in VAPT , including: Web Application Vulnerability Assessment & Penetration Testing, Mobile Application Vulnerability Assessment & Penetration Testing , API and Network Penetration Testing, Cloud Security, Network Security, SOC Monitoring and Incident management. Responsibilities Vulnerability Assessment and Penetration Testing (VA/PT) Conduct VAPT Program Management including Remediation and Closure Management Conduct secure configuration review Conduct/ Manage Secure Code review Conduct/ Manage API secure testing Conduct/ Manage VA/PT for new web/ app development Conduct/ Manage Application Security Conduct/ Manage Red Teaming Conduct/ Manage DevSec/DevSecOps Conduct/ Manage Patch Management Mandatory Skill Sets VAPT In-depth knowledge of security issues, exploitation techniques and remediation measures. Hands-on Experience in Vulnerability Assessments & Penetration Testing (Automated + Manual) on business critical assets ( IP,Web,Mobile,API and AWS) Hands-on experience with well-known security tools BurpSuite, Nessus, Nmap, Accunetix, Metasploit Netsparker, Qualys etc Understanding of web application security vulnerabilities (OWASP Top 10), including XSS, SQL injection, CSRF, and others. Strong knowledge of network security concepts, firewalls, VPNs, IDS/IPS, and TCP/IP protocols. Familiarity with mobile security vulnerabilities in iOS and Android platforms, including reverse engineering, mobile app testing, and OWASP Mobile Security Project. Strong written and verbal communication skills for delivering clear, concise security reports and presenting findings to stakeholders. Preferred Skill Sets Strong organizational, teamwork, multitasking & time management skills. Outstanding communication abilities. Ability to effectively communicate the required recommendations. Years Of Experience Required 4+ Years Education Qualification Minimum Qualification: BE/ BTech Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Technology, Bachelor of Engineering Degrees/Field Of Study Preferred Certifications (if blank, certifications not specified) Required Skills Burp Suite, Nessus Vulnerability Scanner, Structured Query Language (SQL) Optional Skills Teamwork Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date Show more Show less

Job Description Some careers shine brighter than others. If you’re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Vulnerability Assessments – Senior Consultant Specialist In this role, you will: Leading the review of all newly discovered vulnerabilities, to assess if the provided risk score is correctly reflecting the risk to HSBC. Monitoring external threat feeds to identify any newly reported external risks. Managing the review of assigned tickets, determining potential false positive and/ or mitigation on approaches, and providing expert guidance/ advice on remediation. Ensuring all patterns identified for remediation and/ or false positive identification, are clearly documented within the central tools and applied across the HSBC identified threat estate. Identify critical paths of operation and ensure that they are followed to provide the most streamlined and efficient method of operating. Leading and managing thematic reviews in order to drive and maintain systematic uplifts and enhancements to CSAT and wider inter-operational units that help protect the bank. Maintain operational documentation on what reports are available and how to access and utilise existing filters. Conduct holistic reviews of the overall baseline security posture. Clear accountability and ownership of the Vulnerability Assessment and Response key control indicators and key risk indicators. Contribute to and inform requests from Regulators, Internal/ External Audit, and 2LOD challenges/ Papers. Supporting the commentary for routine governance submissions e.g. Cybersecurity Executive Committee Monthly Update, Risk Map, KCIs, KRIs. Supporting Imminent threat review sessions, and deputising for the chair when required. Engaging with the Global Head of Vulnerability Management, and relevant team members to review and gain approval for submissions and ensure information requests are aligned with the group risk appetite providing the expected responses. Adhoc tasks as required, including support to CSAT operational activities, handling escalations and requests from any team or angle. Requirements To be successful in this role, you should meet the following requirements: The ability to understanding, apply, and improve elements of the Vulnerability Management Lifecycle. The ability to use multiple toolsets to convey information, obtain data, and make it meaningful to future plans. Lateral thinking and creative form to deploy expertise in the uplift of people skills, process identifications, and technological adjustments. The ability to recognise threats and risk, and act with insight to deliver a core part of the Cyber Security Operational model in HSBC. Multiple functions will come together to ensure the safety of the bank and the ability to continue business under any circumstances. Ability to produce clear and concise reports for targeted audiences across internal and external stakeholders. Understanding and experience in the practical application and execution of: Vulnerability scanning technologies and their application (e.g. Nessus, SAST/MAST/DAST (Checkmarx, Netsparker, Fortify, IBM AppScan, etc.), OWASP top10 and SANS top25 vulnerabilities and their mitigations Tenable.io, Security Center (or similar Vulnerability Scanning products), risk consolidation platforms). Vulnerability assessments, scoring and ratings and how they are applied. Patch Management. Business and architectural design, including controls analysis, process flows and data flows. Cyber security principles, global financial services business models, regional compliance regulations and laws. Cryptography, SSL/TLS, Encryption. MS Excel to interrogate large data sets. SharePoint, Microsoft Teams and Confluence. Excellent organisational, administrative, analytical, and problem-solving skills with the ability to work accurately and methodically whilst under pressure to meet deadlines. Instinctive and creative, with an ability to create and contribute to bespoke solutions. Flexible approach to shifting or competing priorities. Process orientated, outstanding organizational skills. Proven track record on delivering activities on time to a high standard. High level of integrity and strong ethical values. Pro-active, independent, collaborative team player with a positive attitude. Strong interpersonal skills with the ability to create and maintain relationships - Internal relationships extend to peers across other functions within IT and externally to HSBC global businesses, which include external relationships with vendors, typically audit, legal, and technology where the need arises. Experience of working in roles within Cyber Security Operations, Risk Management, and Governance, within a mid to large enterprise or equivalent organisation. Minimum of 8+ years’ experience in working in IT Security or similar role. Ability to work remotely. You’ll achieve more when you join HSBC. www.hsbc.com/careers HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and opportunities to grow within an inclusive and diverse environment. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website. Issued by – HSBC Software Development India Show more Show less

Experience: 4 to 7.5 years Location: Bangalore / Pune Job Type: Full-Time Key Responsibilities Conduct manual security code reviews on applications developed in Java and C# to identify and remediate security issues. Perform dynamic and static application security testing (DAST/SAST) using tools such as: AppScan Netsparker Acunetix Checkmarx Veracode Burp Suite OWASP ZAP Utilize Kali Linux and other penetration testing toolsets for application assessments. Collaborate with development and QA teams to provide guidance on secure coding practices and remediation strategies. Document security findings and provide detailed, actionable recommendations. Stay up to date on current and emerging security threats, vulnerabilities, and industry best practices. Required Skills 4 to 7.5 years of relevant experience in application security . Strong experience in manual code review , particularly in Java and C# . Proficient in using a wide range of application security tools (DAST, SAST, IAST). Knowledge of common vulnerabilities (e.g., OWASP Top 10) and secure coding principles. Experience working with DevSecOps or integrating security into the SDLC is a plus. Excellent communication and analytical skills. Preferred Certifications (optional but beneficial) OSCP , CEH , CISSP , GIAC GWAPT/GWEB , or similar certifications.

Dear Candidate, We are hiring a Penetration Tester to simulate attacks and discover security vulnerabilities in critical systems. Perfect for professionals skilled in offensive security techniques. Key Responsibilities: Conduct penetration tests on web, mobile, and network systems Document vulnerabilities and remediation recommendations Develop exploits and custom testing tools Collaborate with developers to address findings Required Skills & Qualifications: Proficiency with penetration testing tools (Burp Suite, Metasploit, Nmap) Strong understanding of application and network security Experience writing exploit scripts (Python, Bash) Bonus: OSCP, OSWE, or CEH certification Soft Skills: Strong troubleshooting and problem-solving skills. Ability to work independently and in a team. Excellent communication and documentation skills. Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Reddy Delivery Manager Integra Technologies