Application Security Testing LeadITC Infotech • Hyderabad, Republic Of India, IN
Application Security Testing Lead
ITC Infotech • Hyderabad, Republic Of India, IN
11 days ago
Job descriptionMentor and guide junior pentesters on methodology, reporting standards, and advanced exploitation techniques. Communicate findings clearly to technical and non-technical stakeholders, present executive summaries for leadership. Maintain knowledge of emerging attack techniques, tooling, and application-level threats; Technical Expertise Deep, hands-on experience in manual penetration testing for web, mobile, and API applications. Proficient with dynamic testing methodologies and tools (Burp Suite, OWASP ZAP, proxies, fuzzers, etc.). Strong knowledge of common and advanced application attack vectors (OWASP Top 10, WASC, CWE), exploitation paths, and mitigations. Proven experience testing applications built on Java / J2EE, .NET, Python, PHP, JavaScript stacks and modern frameworks. Solid understanding of HTTP / HTTPS, SSL / TLS, OAuth, SAML, session management, and authentication flows. Familiarity with network-level reconnaissance and tooling (Nmap, Nikto) as applied to application assessments. Experience assessing mobile apps (iOS / Android) and APIs (REST, GraphQL) for logic and security flaws. Knowledge of cloud-hosted application environments (AWS / Azure / GCP) as it relates to attack surface and test planning. Strong scripting skills for custom exploit development and automation (Python, Bash, or similar). Certifications : OSCP, OSWE, GPEN, GWAPT, ECSA, LPT, or equivalent. Experience with red-team style assessments or advanced chained-exploit scenarios. Familiarity with pentest orchestration and scheduling in CI / CD environments (scan runners, automation, retest workflows). Prior experience in regulated industries (BFSI, healthcare, etc.) or client-facing consulting engagements is a plus.
Application Penetration Testing Lead
Location : Hyderabad
Mode : Hybrid
Role Overview
The Application Penetration Testing Lead will own and execute advanced application security testing across web, mobile, cloud and API platforms. This role focuses on manual penetration testing and dynamic testing methodologies to identify and remediate vulnerabilities, lead a small team of testers, and work with development and architecture teams to improve the organisations application security posture.
Key Responsibilities
- Lead and perform end-to-end penetration tests for web, mobile, cloud and API applications, including dynamic testing, exploitation, and validation of fixes.
- Plan, execute, and author high-quality pen test reports with actionable remediation steps, risk ratings, and retest guidance.
- Perform architecture and design reviews from a runtime / attack-surface perspective to inform pentest scope and high-risk areas.
- Execute dynamic application security testing (DAST) and manual verificationfocusing on runtime attack vectors and exploitability.
- Use manual testing techniques (logic flaws, business logic abuse, chained vulnerabilities) beyond automated scan coverage.
- Utilize and maintain a toolkit of offensive security tools (Burp Suite Pro, OWASP ZAP, intercepting proxies, fuzzers, scanners, Nmap, etc.).
- Conduct vendor / third-party application penetration assessments and evaluate external integrations.
- Drive remediation by working closely with developers, architects, and product teams;
prioritize vulnerabilities and define risk-based SLAs for closure.
adapt test methodologies accordingly.
Preferred Qualifications
Create a job alert for this search
Application Security Lead • Hyderabad, Republic Of India, IN
Related jobs
Senior Application Security Engineer
Sphera • Hyderabad, IN
Sphera is a leading global provider of enterprise software and services that enables companies to manage and optimize their environmental, health, safety and sustainability.Our mission is to create...Show more
Last updated: 12 days ago • Promoted
Lead Security Engineer
interface.ai • Hyderabad, IN
Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show more
Last updated: 30+ days ago • Promoted
Lead Application Security Engineer
Photon • Hyderabad, Republic Of India, IN
Application Security Engineer (Senior Officer).Reporting to the Global Head of Security, the Application Security Engineer plays a crucial role in leading our Application Security program, ensuring...Show more
Last updated: 1 day ago • Promoted
Application Security Manager
NopalCyber • Hyderabad, Republic Of India, IN
NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant.
Managed extended detection and response (MXDR), attack surface ma...Show more
Last updated: 12 days ago • Promoted
Product Security Lead
OLYMPUS MEDICAL SYSTEMS INDIA PRIVATE LIMITED • Hyderabad, Republic Of India, IN
BS, Master or equivalent degree in Computer Engineering, Software Engineering, Cybersecurity or other related fields.Minimum of 7 years of professional experience within Information Technology, Sof...Show more
Last updated: 22 days ago • Promoted
Application Security Specialist
ITC Infotech • Hyderabad, Republic Of India, IN
Application Penetration Testing Lead.The Application Penetration Testing Lead will own and execute advanced application security testing across web, mobile, cloud and API platforms.This role focuse...Show more
Last updated: 11 days ago • Promoted
Senior Security Engineer, Application Security
Photon • Hyderabad, Republic Of India, IN
Application Security Engineer (Senior Officer).Reporting to the Global Head of Security, the Application Security Engineer plays a crucial role in leading our Application Security program, ensuring...Show more
Last updated: 1 day ago • Promoted
Application Security Testing Professional
OLYMPUS MEDICAL SYSTEMS INDIA PRIVATE LIMITED • Hyderabad, Republic Of India, IN
BS, Master or equivalent degree in Computer Engineering, Software Engineering, Cybersecurity or other related fields.Minimum of 6 years of professional experience within Information Technology, Sof...Show more
Last updated: 21 days ago • Promoted
SAP Application Security Lead
Confidential • Hyderabad / Secunderabad, Telangana, India
Bachelor's degree in Computer Science, Management Information Systems, a related technical field, or equivalent practical experience.
SAP Security across various applications, including but not limi...Show more
Last updated: 26 days ago • Promoted
Senior Application Security Specialist
Alp Consulting Ltd. • Hyderabad, Republic Of India, IN
Certifications If Any • : Application Security.Experience with managing SAST Tools configuration (Checkmarx, Coverity, Fortify).
Experience with managing DAST Tools (Invicti, Rapid7, AppScan).Experie...Show more
Last updated: 22 days ago • Promoted
Application Security Engineer
QualiZeal • Hyderabad, Republic Of India, IN
CI / CD processes, enhance infrastructure automation, and ensure reliable application delivery across cloud environments.
The ideal candidate will have hands-on experience with.Jenkins, GitHub Actions...Show more
Last updated: 22 days ago • Promoted
Application Security Architect
QualiZeal • Hyderabad, Telangana, India
We are seeking a seasoned Application Security Architect to lead the design and implementation of secure software development practices across our organization.
This role will collaborate with eng...Show more
Last updated: 22 days ago • Promoted
Senior Application Security Engineer
Alp Consulting Ltd. • Hyderabad, Telangana, India
Certifications If Any • : Application Security.Experience with managing SAST Tools configuration (Checkmarx, Coverity, Fortify).
Experience with managing DAST Tools (Invicti, Rapid7, AppScan).Experie...Show more
Last updated: 22 days ago • Promoted
Lead Security Engineer
Arcana • hyderabad, telangana, in
As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between.
You'll design and enforce policies, automate controls, and harden...Show more
Last updated: 30+ days ago • Promoted
Application Penetration Testing Lead
ITC Infotech • hyderabad, telangana, in
Application Penetration Testing Lead.The Application Penetration Testing Lead will own and execute advanced application security testing across web, mobile, cloud and API platforms.This role focuse...Show more
Last updated: 12 days ago • Promoted
Application Security Tester
Confidential • Hyderabad / Secunderabad, Telangana, India
Zelis is modernizing the healthcare financial experience in the United States (U.We serve more than 750 payers, including the top five national health plans, regional health plans, TPAs and million...Show more
Last updated: 26 days ago • Promoted
Security Test Specialist
OLYMPUS MEDICAL SYSTEMS INDIA PRIVATE LIMITED • Hyderabad, Telangana, India
BS, Master or equivalent degree in Computer Engineering, Software Engineering, Cybersecurity or other related fields.Minimum of 6 years of professional experience within Information Technology, Sof...Show more
Last updated: 21 days ago • Promoted
Senior Application Security Engineer
Photon • Hyderabad, Telangana, India
Application Security Engineer (Senior Officer).Reporting to the Global Head of Security, the Application Security Engineer plays a crucial role in leading our Application Security program, ensuring...Show more
Last updated: 1 day ago • Promoted