VAPT Professional (Senior) at CyberTimes

CyberSecIT

Remote / On-site (project dependent) Remote / On-site 6+ years Posted: 21-11-2025

Senior VAPT Professional required for network, application, configuration and cloud security assessments. Strong hands-on experience across infra, application, CI/CD and container environments. Immediate joiners preferred; role can be remote or on-site depending on project.

Required Qualification

• 6+ years hands-on experience in VAPT, network and application penetration testing.
• Proven experience auditing cloud security (AWS/Azure/GCP), IAM, logging/monitoring and cloud-native controls.
• Experience reviewing CI/CD pipelines, IaC (Terraform/CloudFormation) and container/Kubernetes security.
• Strong tooling experience: Nmap, Nessus/Tenable, Burp Suite, Metasploit, Snyk/Trivy, kube-bench, container scanners, and related tooling.
• Scripting/automation skills (Python, Bash, or similar) and solid report-writing ability.
• Relevant certifications (OSCP, CRTP, CISSP, or cloud certs) are a plus.

Responsibilities

• Plan and execute vulnerability assessments and penetration tests for networks, applications (web/mobile/API) and cloud environments.
• Perform configuration reviews, CI/CD pipeline security assessments and container/Kubernetes security reviews.
• Develop reproducible PoCs, provide remediation guidance and validate fixes with retesting.
• Collaborate with engineering, DevOps and cloud teams to integrate security into the SDLC and deployment pipelines.
• Support vulnerability lifecycle management, risk prioritisation and reporting to stakeholders.
• Contribute to detection of misconfigurations, insecure deployments and unsafe container images; recommend hardening.
• Mentor junior testers and contribute to security tooling and automation.

Apply via Email