Back to Jobs
This job listing has expired. Browse similar jobs →
Senior Penetration Tester
Actively Reviewing
ExpenseAnywhere Corporation
Job Description
We are seeking a Senior Penetration Tester with 7–10 years of experience in offensive security and security testing to lead advanced penetration testing and security assessment initiatives. The role involves identifying vulnerabilities across web applications, APIs, networks, cloud environments, and enterprise systems, while working closely with engineering, DevOps, and infrastructure teams to strengthen the organization’s overall security posture.
- Candidates with performance testing experience using JMeter will be given priority.
Key Responsibility
- Conduct penetration testing for web applications, APIs, networks, and cloud environments.
- Identify and exploit vulnerabilities including SQL Injection, XSS, CSRF, IDOR, SSRF, and authentication flaws.
- Perform internal and external network security testing, vulnerability scanning, and exploitation.
- Assess cloud security for AWS, Azure, and GCP environments.
- Execute red team exercises and threat simulations to evaluate security defenses.
- Prepare detailed vulnerability assessment reports with remediation recommendations.
- Collaborate with QA, DevOps, and development teams to address security issues.
- Mentor junior security engineers and support security best practices.
- Conduct performance and load testing using Apache JMeter (preferred).
Required Skills
- Strong knowledge of OWASP Top 10, SANS Top 25, MITRE ATT&CK, and PTES.
- Hands-on experience with tools such as Burp Suite, Metasploit, Nmap, Nessus/OpenVAS, SQLMap, Wireshark, Nikto.
- Experience in Active Directory security testing, privilege escalation, and network security.
- Knowledge of container security (Docker/Kubernetes) and cloud security concepts.
- Proficiency in scripting languages such as Python, Bash, PowerShell, or JavaScript.
Experience
- 7–10 years of experience in penetration testing, ethical hacking, or security testing.
- Experience with enterprise-level security assessments and red team engagements.
- Exposure to DevSecOps and security testing in CI/CD pipelines is a plus.
Required Skills
Similar Jobs
View all →
Group Project Manager
Interactive Avenues
Mumbai
Adobe XD
Adobe Illustrator
Usability Testing
+13
CRM Campaign Manager
Rainbow Children's Hospitals
Hyderabad
Usability Testing
Adobe Illustrator
Project Management
+7
User Acceptance Testing Coordinator (Salesforce/Conga)
Amadeus
Bengaluru
Usability Testing
Test Data
Project Management
+3
Product Manager
Vision Waves
Indore
Sales Operations
Usability Testing
Data Analysis
+7
Global Program Management - Business Analyst - Associate
hackajob
Mumbai
Usability Testing
Project Management
JIRA
Similar Jobs
View all →
Group Project Manager
Interactive Avenues
Mumbai
CRM Campaign Manager
Rainbow Children's Hospitals
Hyderabad
User Acceptance Testing Coordinator (Salesforce/Conga)
Amadeus
Bengaluru
Product Manager
Vision Waves
Indore
Global Program Management - Business Analyst - Associate
hackajob
MumbaiShare
Quick Apply
Upload your resume to apply for this position
–