Talent.com
Offensive Security Engineer
Offensive Security EngineerShieldByte Infosec Pvt. Ltd. • Republic Of India, IN
Offensive Security Engineer

Offensive Security Engineer

ShieldByte Infosec Pvt. Ltd. • Republic Of India, IN
23 hours ago
Job description

Location : Ghatkopar, Mumbai (Onsite)

Department : Information Security / Offensive Security

Experience : 2–8 Years

Certifications Preferred : OSCP, CEH, eCPPT, eJPT, GWAPT, or equivalent

About the Role

We are seeking a highly skilled Cybersecurity Analyst (Vulnerability Assessment & Penetration Testing) specializing in both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) . The ideal candidate will have hands-on experience performing end-to-end security testing across web applications, mobile apps (Android / iOS), APIs, networks, Active Directory environments, and source code.

This role requires a strong understanding of offensive security, exploit development, red teaming methodologies, and secure coding practices to identify, exploit, and document vulnerabilities with actionable recommendations.

Key Responsibilities

  • Conduct Vulnerability Assessments and Penetration Tests (VAPT) across :
  • Web applications, APIs, and backend services
  • Android and iOS mobile applications
  • Corporate and cloud networks
  • Active Directory and internal infrastructure
  • Perform SAST & DAST on custom applications using manual and automated tools.
  • Analyze source code (Java, Python, PHP, .NET, etc.) to identify logic flaws and insecure coding practices.
  • Execute Red Team exercises , simulate attack chains, and evaluate defense mechanisms.
  • Generate detailed technical reports with PoC evidence, exploit steps, risk severity, and remediation guidance.
  • Collaborate with development and DevSecOps teams to verify fixes and retests.
  • Maintain up-to-date knowledge of the latest vulnerabilities, exploits, and security tools.
  • Support compliance assessments and cybersecurity trends.

Required Skills and Expertise

  • Strong knowledge of OWASP Top 10 , SANS CWE 25 , and MITRE ATT&CK frameworks.
  • Hands-on experience with tools like Burp Suite, ZAP, Metasploit, Nmap, Nessus, Nikto, MobSF, Frida, Drozer, Postman, SQLMap , etc.
  • Deep understanding of authentication flaws, insecure direct object references, API abuse, and privilege escalation.
  • Practical experience with Active Directory attacks (Kerberoasting, Pass-the-Hash, LLMNR poisoning, etc.)
  • Proficiency in scripting languages (Python, Bash, PowerShell) and code review.
  • Excellent analytical, reporting, and communication skills.

    • Certifications (Preferred but not Mandatory)

  • Offensive Security Certified Professional (OSCP)
  • Certified Ethical Hacker (CEH)
  • eLearnSecurity Certified Professional Penetration Tester (eCPPT)
  • GIAC Penetration Tester (GPEN)
  • eWPT / eWPTX / eJPT

    • Educational Qualification

  • Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.
  • Equivalent hands-on experience may be considered as a substitute for formal education.

    • Why Join Us

  • Opportunity to work on real-world red teaming engagements and advanced VAPT projects.
  • Exposure to global clients in the BFSI, IT, and healthcare domains.
  • Continuous learning through internal labs, CTFs, and tool research.
  • Competitive pay, certification sponsorship, and a growth-oriented culture.
    • Create a job alert for this search

    Security Engineer • Republic Of India, IN

    Related jobs
    Senior Application Security Engineer

    Senior Application Security Engineer

    Sphera • Nagpur, IN
    Sphera is a leading global provider of enterprise software and services that enables companies to manage and optimize their environmental, health, safety and sustainability.Our mission is to create...Show more
    Last updated: 10 days ago • Promoted
    Cyber Security Engineer

    Cyber Security Engineer

    HCLTech • India
    The candidate ensures that the risk to the organization’s information posed by a variety of cyber threats is minimized.Candidate in this role will function as subject matter expertise within the di...Show more
    Last updated: 30+ days ago • Promoted
    Security Engineer - OSCP Certified

    Security Engineer - OSCP Certified

    Hashira • India
    Hashira is an R&D studio focused on solving complex infrastructure challenges in blockchain and AI.Our work supports projects like Ren, KeeperDAO (Rook), Catalog, and Garden, which have collectivel...Show more
    Last updated: 7 hours ago • Promoted • New!
    Lead Security Engineer

    Lead Security Engineer

    interface.ai • India, India
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show more
    Last updated: 30+ days ago • Promoted
    Offensive Security Engineer

    Offensive Security Engineer

    Confidential • India
    At Tide we help SMEs save time (and money) in the running of their businesses by not only offering business accounts and related banking services, but also a comprehensive set of highly usable and ...Show more
    Last updated: 2 days ago • Promoted
    Security Engineer

    Security Engineer

    Check Point Software • Republic Of India, IN
    As the world’s leading vendor of Cyber Security, facing the most sophisticated threats and attacks, we’ve assembled a global team of the most driven, creative and innovative people.At Check Point, ...Show more
    Last updated: 18 days ago • Promoted
    Security Engineer

    Security Engineer

    Infogain • India
    Title : Security Engineer (6+ Years).Use CrowdStrike reports to evaluate all security vulnerabilities on both Windows and Linux systems. Analyze the requirements to remediate the security vulnerabili...Show more
    Last updated: 7 hours ago • Promoted • New!
    Cyber Security Engineer

    Cyber Security Engineer

    CareerUS Solutions • India, India
    Cyber Security Engineer – Job Description.The Cyber Security Engineer is responsible for designing, implementing, and maintaining security systems to protect the organization’s computer networks, a...Show more
    Last updated: 9 days ago • Promoted
    TAVS Tech Cyber Security Specialist / Engineer | Pune | Immediate

    TAVS Tech Cyber Security Specialist / Engineer | Pune | Immediate

    DigiHelic Solutions Pvt. Ltd. • Nagpur, IN
    Title : TAVS Tech Cyber Security Specialist.Vault & Privileged Access Management (Core Requirement).HashiCorp Enterprise Vault (preferred). Experience building, deploying, and maintaining Vault clust...Show more
    Last updated: 2 hours ago • Promoted • New!
    C&S Infrastructure Security Engineer

    C&S Infrastructure Security Engineer

    Tata Consultancy Services • India
    C&S Infrastructure Security Engineer – Windows server OS and Mac OS.Windows OS, Mac Os Developer, server.Windows Server OS and Mac OS environment. Hands-on experience in analyzing, testing and imple...Show more
    Last updated: 7 hours ago • Promoted • New!
    AKS Container Security Engineer

    AKS Container Security Engineer

    Xsell Resources • Nagpur, IN
    We are urgently seeking a Certified CKA / CKS Senior AKS Container Security Engineer for our healthcare client.Open to Immediate joiners only. We are seeking a highly skilled AKS (Azure Kubernetes Ser...Show more
    Last updated: 2 hours ago • Promoted • New!
    DevSecOps / AppSecOps Staff Engineer

    DevSecOps / AppSecOps Staff Engineer

    First American (India) • nagpur, maharashtra, in
    Our people-first culture empowers bold thinkers and passionate technologists to solve real-world challenges through scalable architecture and innovative design. If you're driven by impact, thrive in...Show more
    Last updated: 30+ days ago • Promoted
    Sap Security

    Sap Security

    TalentBridge • nagpur, maharashtra, in
    Sap Security – Finance (SAP S / 4HANA Security).Months of Contract (With high possibility of Full Time).We are seeking an experienced SAP S / 4 Security Specialist with strong expertise in designing, b...Show more
    Last updated: 20 hours ago • Promoted • New!
    Lead Security Engineer

    Lead Security Engineer

    Arcana • India, India
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show more
    Last updated: 30+ days ago • Promoted
    Security Operations Engineer

    Security Operations Engineer

    ITPeopleNetwork • India
    We are looking for a junior to mid-level.Saviynt Identity Access Management (IAM / IGA).CyberArk Endpoint Privilege Manager (EPM). The ideal candidate will assist in user access governance, email thre...Show more
    Last updated: 2 days ago • Promoted
    Lead Offensive Security

    Lead Offensive Security

    Velodata Global Pvt Ltd • Nagpur, IN
    Job Description : Lead – Offensive Security.The Lead – Offensive Security is a key member of the Security Assurance Team, responsible for evaluating, testing, and enhancing Lulu Retail’s cybersecuri...Show more
    Last updated: 2 hours ago • Promoted • New!
    Security Compliance Engineer

    Security Compliance Engineer

    ImageKit.io • Nagpur, IN
    As long as you have a stable internet connection, you can work from anywhere in the world.We do meet up if you are in Delhi NCR or on our company trips. Have you ever ordered with Swiggy or BigBaske...Show more
    Last updated: 4 days ago • Promoted
    Lead Security Engineer

    Lead Security Engineer

    PINKVILLA • Republic Of India, IN
    Pinkvilla is seeking a dynamic Information Security professional, who will contribute to strengthening our security posture by working closely with cross-functional teams, monitoring threats, secur...Show more
    Last updated: 2 days ago • Promoted