CONTRACT
Cyber-Penetration Tester
Alignity
Not specified · onsite · Posted 11d ago
Sourced from
Undisclosed5–2 yrscontractNot specified
Your match
?
Sign in to see your match score, skill gaps & tailored resume.
Section · 01
About this role
About the role Join Deloitte as a Cyber-Penetration Tester in Hyderabad to deliver advanced security testing across multiple domains and help clients identify and remediate critical vulnerabilities.
Key responsibilities
- Lead technical scoping and execution of manual penetration tests for web, mobile, API, network, and thick client applications.
- Analyze complex architectures to identify attack paths, validate findings, and distinguish exploitable vulnerabilities from false positives.
- Provide clear, risk-based remediation guidance and prepare high-quality technical and executive reports.
- Contribute to the enhancement of testing methodologies, processes, and automation including AI-assisted techniques.
- Conduct security research and support emerging areas like AI-enabled applications and LLM security testing.
Required skills and experience
- 5+ years of hands-on experience in manual penetration testing across web, mobile, API, network, and thick client applications.
- Proficient with common penetration testing tools (e.g., Burp Suite, OWASP ZAP, Metasploit, Nmap) and platforms like Kali Linux.
- Strong understanding of security principles, vulnerabilities, attack techniques, and architectural analysis.
- Experience scripting with languages such as Python, Bash, or PowerShell and familiarity with one programming language and framework for application testing.
- Excellent verbal and written communication skills with ability to explain technical issues to diverse audiences and manage multiple priorities.
- Experience working across global and multi-stakeholder environments with sound judgment and time management.
Nice to have
- Certifications like OSCP, OSWE, OSEP, GPEN, GWAPT, GMOB, or eCPPT.
- Knowledge of OWASP Top 10, API Security, Thick Client and LLM security risks, and the MITRE ATT&CK framework.
- Experience with cloud penetration testing, reverse engineering, SAST, and DAST.
- Exposure to AI-assisted security testing, AI-supported exploit research, and offensive security automation.
Location Hyderabad, India
Sourced from linkedin · view original
Let the agent run this one for you.
Tailored resume, auto-apply, and referral lookup — in under 2 minutes.
Section · 02
Skills
PythonAPIBashNetwork SecurityPenetration TestingPowershellReverse EngineeringMobile Securityprogramming languageNetworkOWASPapi securityframeworkBurp SuiteOscpKali Linuxdastsastnetwork penetration testingmobileWebMitre Att&CkMetasploitNmapOWASP ZAPLLM SecurityWeb Securitysecurity principlesGPENvulnerabilitiesattack techniquesLLM Security TestingWeb Application Penetration TestingAPI penetration testingCloud Penetration TestingThick Client SecurityGWAPTLLM Security Risksmanual penetration testingMobile application penetration testingAI-Assisted Security TestingArchitectural AnalysisOSWEOSEPThick Client ApplicationsAI-supported exploit researcheCPPTGMOBOffensive Security AutomationThick Client Penetration Testingthick client application penetration testing