This job offer is not available in your country.

▷ (Apply Now) Penetration Tester Junior

NopalCyberIndia

26 days ago

Job description

About NopalCyber

NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Through Managed Extended Detection and Response (MXDR), Attack Surface Management (ASM), Breach and Attack Simulation (BAS), and Advisory Services, we fortify our clients’ cybersecurity across both offense and defence.

Our AI-driven Nopal360° platform, NopalGo mobile app, and proprietary Cyber Intelligence Quotient (CIQ) enable organizations to quantify, track, and visualize their cybersecurity posture in real time. We democratize enterprise-grade security operations for organizations of all sizes by lowering the barrier to entry while raising the bar for security and service.

Job location : Nopal Cyber, Hyderabad (Work from Office, 5 Days a Week)

Employment Type : Full-time

Key Responsibilities

Assist in discovering and inventorying external-facing assets (domains, IPs, cloud services, APIs, etc.) as part of ongoing Attack Surface Discovery (ASD) efforts.
Help identify unknown, unmanaged, or misconfigured assets and support remediation to improve Attack Surface Management (ASM / EASM).
Operate and maintain open-source or internal tools for automated asset enumeration, monitoring, and vulnerability scanning.
Collect and analyse DNS records, SSL certificates, WHOIS data, and public metadata to map assets to the organization.
Work closely with security, infrastructure, and cloud teams to ensure visibility across on-premises, cloud, and hybrid environments.
Assist in evaluating and integrating ASM / EASM platforms and automation workflows.
Support the planning and execution of vulnerability assessments and limited penetration testing of external-facing assets, web apps, and APIs under supervision.
Run and interpret Dynamic Application Security Testing (DAST) scans (authenticated and unauthenticated) to identify application-layer vulnerabilities.
Validate, track, and assist with remediation of findings from DAST and ASD activities.
Stay current with emerging attack vectors and vulnerabilities relevant to attack surface management and web application security.
Conducting research to identify new attack vectors.

Required Skills & Experience

1–3 years of experience in cybersecurity, IT, or a related technical role (security operations, vulnerability management, cloud security).

Basic knowledge of asset discovery tools / methods (e.g., Subfinder, Amass, Shodan, Censys, Nmap), OSINT framework and ASM / EASM concepts.

Understanding of TCP / IP and / or OSI Models, common Internet protocols / services (DNS, HTTP / S, SMTP, etc.) and their impact on external exposure.

Exposure to or hands-on experience with DAST tools (e.g., OWASP ZAP, Burp Suite, or similar) and basic VAPT methodologies for web apps and APIs.

Familiarity with scripting / automation using Python, Bash, or similar languages to streamline discovery or scanning tasks.

Ability to analyse and correlate data from multiple sources to track and verify digital assets.

Strong curiosity and investigative mindset with attention to detail.

Ability to assist in developing and presenting comprehensive attack surface discovery reports, identifying external asset exposures, and recommending prioritized remediation actions aligned with organizational security policies.

Good communication skills and ability to document and present findings in customers calls clearly.

Educational Qualifications

Bachelor’s degree in engineering, Computer Science, or related discipline.

CEH Certification is mandatory.

Ability to script custom reconnaissance or scanning tools (Python, Bash, etc.).

Familiarity with OWASP Top 10, API security, and secure cloud architecture.

Participation in CTFs, security research, or responsible disclosure programs.

Personal Attributes

Self-starter and quick learner requiring minimal ramp-up

Excellent written, oral, and interpersonal communication skills

Highly self-motivated, self-directed, and attentive to detail

Ability to effectively prioritize and execute tasks in a high-pressure environment

Create a job alert for this search

Penetration Tester • India

Related jobs

Promoted

Quality Assurance Tester

RED GlobalNagpur, IN

RED GLOBAL-GENESYS QA / TESTER-INDIA-REMOTE-ASAP-12MONTHS+.RED Global, on behalf of a Key Client Partner, is currently searching for a skilled and detail-oriented Genesys QA / Tester to ensure the qual...Show moreLast updated: 2 days ago

Promoted

CST Associate Penetration Tester

Claranet Indianagpur, maharashtra, in

Founded at the beginning of the dot.CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP)...Show moreLast updated: 2 days ago

Promoted

Penetration Tester

HCLTechIndia

Skills Required : Web Application PT -Must have Application Security assessment- Must have Mobile PT- Good to have Cloud Must (knowledge + understanding of Azure and AWS) Red Team Activities- Must A...Show moreLast updated: 3 days ago

Promoted
New!

(15h Left) Penetration Tester - Consultant

ComputacenterIndia

A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team.In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and netw...Show moreLast updated: 3 hours ago

Promoted

Senior Penetration Tester

ACL DigitalIndia

Bachelor’s degree in computer science / engineering, information security, or a related field.Proven experience in penetration testing, vulnerability assessment, and security testing with a minimum o...Show moreLast updated: 3 days ago

Promoted

Senior Penetration Tester

AppSecure Securitynagpur, maharashtra, in

Appsecure is a leading offensive cybersecurity and red-team services company trusted by Fortune 500s, high-growth startups, and global enterprises. Our team consists of top bug bounty hunters, seaso...Show moreLast updated: 24 days ago

Promoted

A Tester – Mobile App (Flutter / Node.js) | Immediate Joiner | Remote I Contract

Saarvanagpur, maharashtra, in

Remote

Saarva is a B2B mobile app for shopkeepers to digitise their inventory and manage their invoicing.We’re looking for an experienced. Android and iOS, with a strong focus on.Design, execute, and maint...Show moreLast updated: 3 days ago

Promoted

Python QA Developer

Definablenagpur, maharashtra, in

Python development product designed to streamline agent workflows, enhance automation, and provide robust developer experiences. To ensure our product meets the highest quality standards, we’re look...Show moreLast updated: 12 days ago

Promoted

Tosca Automation Tester

Dexian IndiaNagpur, IN

Experience Required : 5-7 Years (will be rejected if not matched).Looking for immediate joiners (15-20 days / Serving notice). Mandatory Skillset : Tosca Automation with SAP, Experience with Finance mo...Show moreLast updated: 2 days ago

Promoted

Penetration Tester

ACL DigitalIndia

As a Senior Penetration Tester, your primary role is to assess and enhance the security of our information systems, networks, and applications through comprehensive penetration testing and vulnerab...Show moreLast updated: 2 days ago

Promoted
New!

[19 / 10 / 2025] Penetration Tester

ACL DigitalIndia

Promoted

Junior Software Tester (Automation + API) | Hybrid – Mumbai

hard.codedIndia

We connect skilled developers with top IT companies across the EU, empowering them to work on innovative projects that push the boundaries of software excellence. Join us to elevate your career and ...Show moreLast updated: 2 days ago

Promoted

Quality Assurance Tester

WebBuddy LLCnagpur, maharashtra, in

WebBuddy is a leading web design and development agency known for transforming ideas into digital realities.With a team comprising expert developers, creative designers, and strategic thinkers, we ...Show moreLast updated: 19 days ago

Promoted

Workday Testing

People Prime WorldwideNagpur, IN

They balance innovation with an open, friendly culture and the backing of a long-established parent company, known for its ethical reputation. We guide customers from what’s now to what’s next by un...Show moreLast updated: 1 day ago

Promoted
New!

▷ [Only 24h Left] Penetration Tester

HCLTechIndia

Application Security assessment- Must have.Cloud Must (knowledge + understanding of Azure and AWS).Network & Infrastructure PT -Must have (protocols, Windows, Linux). Firewall testing / auditing- Must...Show moreLast updated: 3 hours ago

Promoted
New!

[High Salary] CST Associate Penetration Tester

Claranet IndiaIndia

Promoted

Penetration Tester

AsiteIndia

Penetration Testers - Junior and Senior / Lead.Location : In Office, Ahmedabad, Gujarat, India (not remote) Full-time Salary : Up to ₹12. L (1,250,000) INR per year for Senior / Lead Must undergo backgrou...Show moreLast updated: 18 days ago

Promoted

(Only 24h Left) Senior Penetration Tester

AppSecure SecurityIndia

Promoted

Pen tester

Anlage Infotech (India) P LtdIndia

We're Hiring for the leading Manufacturing Company of Electrical Connection and Protection solutions'.We’re looking for people who put their innovation work to advance our success – and their own.J...Show moreLast updated: 3 days ago

Promoted

Innovya Technologies - Automation API Tester - POSTMAN / JMeter

Innovya TechnologiesIndia

Company Overview : Innovya Technologies is a dynamic and growing software consulting firm that drives business automation with cutting-edge solutions.We help business...Show moreLast updated: 18 days ago