SDET Pen Testing

1-3 Years

Gurgaon

Full-Time

Job Description | SDET

Who are we

Falcon a Series-A funded cloud-native, AI-first banking technology & processing platform that helps banks, NBFCs, and PPIs quickly and affordably launch next-gen financial products, such as credit card, credit line on UPI, prepaid card, fixed deposits, and loans.

Since our 2022 launch, we've processed USD 1 Bn+ in transactions, signed on 12 of India&aposs top financial institutions, & clocked USD 15 Mn+ in revenue. Our company is backed by marquee investors from around the world, including heavyweight investors from Japan, USA, as well as leading Indian ventures and banks.

For more details, please visit https : / / falconfs.com /

Job Summary

We're looking for a passionate and detail-oriented SDET (Software Development Engineer in Test) with a strong understanding of penetration testing and familiarity with automation frameworks . In this hybrid role, you'll bridge the gap between development, testing, and security—ensuring our applications are not just functional, but secure and resilient.

Key Responsibilities

Conduct manual and automated penetration testing across web and mobile applications, APIs, and infrastructure

Develop, maintain, and enhance automated test scripts within CI / CD pipelines

Identify vulnerabilities using tools (e.g., Burp Suite, OWASP ZAP, Metasploit) and validate fixes through regression and retesting

Collaborate with DevOps, Development, and Product teams to build security-first testing frameworks

Assist in creating secure coding guidelines and performing code reviews with a security lens

Contribute to the development of test strategies, test plans, and test cases

Stay updated with the latest security vulnerabilities, attack vectors, and threat landscapes

Required Qualifications

1–3 years of experience in software testing , including security and functional test automation

Strong understanding of OWASP Top 10 , threat modelling , and security best practices

Experience with automated testing tools such as Selenium, TestNG, JUnit, or Cypress

Hands-on with SAST / DAST tools , vulnerability scanners, and scripting languages (Python, Bash, JavaScript)

Familiarity with CI / CD tools like Jenkins, GitLab, or Circle CI

Understanding of RESTful APIs and experience in API testing (Postman, Rest Assured, etc.)

Certifications like OSCP, CEH, or GWAPT are a plus

Other Specifics

Location : Gurgaon(Hybrid mode)

Job Type : Full Time

Share with someone awesome

View all job openings

Show more

Show less

Skills Required

DAST, Metasploit, Api Testing, Automated Test Scripts, Javascript, Junit, SAST, Automation Frameworks, Gitlab, Selenium, Penetration Testing, Python, Bash, TestNG, Jenkins, Burp Suite, cypress , Rest Assured, Restful Apis, Postman