Senior Penetration Tester (12-Month Contract)

We are a security-focused organization committed to protecting customers, systems, and data through proactive risk identification and continuous improvement. We value integrity, collaboration, technical excellence, and accountability, and we foster an environment where security professionals can grow, innovate, and make a measurable impact.

The Senior Penetration Tester is responsible for assessing the security of applications, platforms, and environments through advanced penetration testing techniques. This role requires OSCP certification and extensive hands-on experience identifying, exploiting, and documenting vulnerabilities across web, network, and cloud systems. The Senior Penetration Tester works closely with engineering and infrastructure teams to remediate findings and strengthen overall security posture.

After-hours or weekend work may be required for critical testing activities, and participation in incident response efforts is expected.

This is a 12-month contract position, ideally working in a hybrid model and reporting to our Chennai office at DLF IT Park, Manapakkam at least 3-4 days a week.

Here are the core functions, responsibilities, and expectations for this role: 

• Perform penetration testing on web applications, APIs, mobile applications, networks, and cloud environments.
• Identify, exploit, and validate vulnerabilities to demonstrate business risk and potential impact.
• Conduct security assessments of platforms and environments, including architecture and configuration reviews.
• Develop clear, detailed reports documenting findings, risk ratings, and actionable remediation recommendations.
• Collaborate with engineering and development teams to validate remediation efforts and improve security controls.
• Support incident response activities, including forensic analysis and threat validation.
• Stay current with emerging threats, tools, and penetration testing techniques.
• Participate in after-hours or weekend testing as required for critical engagements or incidents.
• Maintain alignment with applicable industry standards and regulatory requirements.
• Additional tasks associated with this position may be assigned in response to company initiatives and business needs.