Talent.com
Cybersecurity Analyst – VAPT - DAST and SAST
Cybersecurity Analyst – VAPT - DAST and SASTShieldByte Infosec Pvt. Ltd. • Mumbai, Maharashtra, India
Cybersecurity Analyst – VAPT - DAST and SAST

Cybersecurity Analyst – VAPT - DAST and SAST

ShieldByte Infosec Pvt. Ltd. • Mumbai, Maharashtra, India
1 day ago
Job description

Location : Ghatkopar, Mumbai (Onsite)

Department : Information Security / Offensive Security

Experience : 2–8 Years

Certifications Preferred : OSCP, CEH, eCPPT, eJPT, GWAPT, or equivalent

About the Role

We are seeking a highly skilled Cybersecurity Analyst (Vulnerability Assessment & Penetration Testing) specializing in both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST). The ideal candidate will have hands-on experience performing end-to-end security testing across web applications, mobile apps (Android / iOS), APIs, networks, Active Directory environments, and source code.

This role requires a strong understanding of offensive security, exploit development, red teaming methodologies, and secure coding practices to identify, exploit, and document vulnerabilities with actionable recommendations.

Key Responsibilities

  • Conduct Vulnerability Assessments and Penetration Tests (VAPT) across :
  • Web applications, APIs, and backend services
  • Android and iOS mobile applications
  • Corporate and cloud networks
  • Active Directory and internal infrastructure
  • Perform SAST & DAST on custom applications using manual and automated tools.
  • Analyze source code (Java, Python, PHP, .NET, etc.) to identify logic flaws and insecure coding practices.
  • Execute Red Team exercises, simulate attack chains, and evaluate defense mechanisms.
  • Generate detailed technical reports with PoC evidence, exploit steps, risk severity, and remediation guidance.
  • Collaborate with development and DevSecOps teams to verify fixes and retests.
  • Maintain up-to-date knowledge of the latest vulnerabilities, exploits, and security tools.
  • Support compliance assessments and cybersecurity trends.

Required Skills and Expertise

  • Strong knowledge of OWASP Top 10, SANS CWE 25, and MITRE ATT&CK frameworks.
  • Hands-on experience with tools like Burp Suite, ZAP, Metasploit, Nmap, Nessus, Nikto, MobSF, Frida, Drozer, Postman, SQLMap, etc.
  • Deep understanding of authentication flaws, insecure direct object references, API abuse, and privilege escalation.
  • Practical experience with Active Directory attacks (Kerberoasting, Pass-the-Hash, LLMNR poisoning, etc.)
  • Proficiency in scripting languages (Python, Bash, PowerShell) and code review.
  • Excellent analytical, reporting, and communication skills.

    • Certifications (Preferred but not Mandatory)

  • Offensive Security Certified Professional (OSCP)
  • Certified Ethical Hacker (CEH)
  • eLearnSecurity Certified Professional Penetration Tester (eCPPT)
  • GIAC Penetration Tester (GPEN)
  • eWPT / eWPTX / eJPT

    • Educational Qualification

  • Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.
  • Equivalent hands-on experience may be considered as a substitute for formal education.

    • Why Join Us

  • Opportunity to work on real-world red teaming engagements and advanced VAPT projects.
  • Exposure to global clients in the BFSI, IT, and healthcare domains.
  • Continuous learning through internal labs, CTFs, and tool research.
  • Competitive pay, certification sponsorship, and a growth-oriented culture.
    • Create a job alert for this search

    Cybersecurity Analyst • Mumbai, Maharashtra, India

    Related jobs
    Senior Security Analyst

    Senior Security Analyst

    greytHR • Kalyan-Dombivli, IN
    AWS and GCP to lead cloud security initiatives, implement security tools, and secure production cloud environments.The ideal candidate should have deep knowledge of AWS security services, hands-on ...Show more
    Last updated: 8 hours ago • Promoted • New!
    Tech Risk Analyst

    Tech Risk Analyst

    DigiHelic Solutions Pvt. Ltd. • Kalyan-Dombivli, IN
    Strong experience in IT compliance & IAM (Identity & Access Management) – minimum 5+ years.Hands-on knowledge of credential lifecycle management – certificates, secrets, keys, privileged accounts, ...Show more
    Last updated: 8 hours ago • Promoted • New!
    Cybersecurity Platform Engineer

    Cybersecurity Platform Engineer

    Value Point Systems Pvt Ltd • Thāne, Republic Of India, IN
    Engineering for Tenable AD and Deception Tool.The platform engineering Specialist is responsible for technical support and administration work, reviewing Logs and signatures identified in tools, de...Show more
    Last updated: 10 days ago • Promoted
    Intertec Systems - Security Operations Center Analyst

    Intertec Systems - Security Operations Center Analyst

    Intertec Systems • Navi Mumbai,Maharashtra
    Description : Skills : SIEM, edr, Threat & Vulnerability Management, Log Analysis, Incident Management, Email Security, xdr, ...Show more
    Last updated: 13 hours ago • Promoted • New!
    L2 Security Operations Center Analyst - Threat Hunting

    L2 Security Operations Center Analyst - Threat Hunting

    Digihelic Solutions Private Limited • Mumbai
    Description : Location : Mumbai, India Experience : 5+ Years Mode of Work<...Show more
    Last updated: 30+ days ago • Promoted
    Senior Cybersecurity Engineer

    Senior Cybersecurity Engineer

    Russell Investments • Mumbai, Maharashtra, India
    Job Posting Description : We are seeking an experienced Senior Cybersecurity Engineer to join our Mumbai based Cybersecurity Proxy team. The Proxy team is responsible for supporting the Russell Inve...Show more
    Last updated: 13 days ago • Promoted
    Security Operations Center Analyst

    Security Operations Center Analyst

    Krones Digital Solutions India • Kalyan-Dombivli, IN
    Krones Digital Solutions India (KDSI) is a subsidiary of the Krones Group and is a part of the Krones.The Krones Group, headquartered in Neutraubling, Germany, plans, develops, and manufactures mac...Show more
    Last updated: 8 hours ago • Promoted • New!
    SynRadar - Senior Security Analyst - Vulnerability Management

    SynRadar - Senior Security Analyst - Vulnerability Management

    SynRadar • Mumbai
    Description : Role : Senior Security Analyst - Appsec / VA / PT Experience : 4-6 years< / p&...Show more
    Last updated: 17 days ago • Promoted
    Cyber Security - VAPT

    Cyber Security - VAPT

    Spectral Consultants • Thane, IN
    Security Analyst / Team Lead (TVM | VA / PT).Gurugram | 💼 5+ Years Experience | 🔐 Cybersecurity.Spectral Consultants is hiring for a leading. Senior Security Analyst / Team Lead.Threat & Vulnerabili...Show more
    Last updated: 8 hours ago • Promoted • New!
    Senior Analyst

    Senior Analyst

    The Edge Partnership • Mumbai, India
    Some of the key responsibilities will include : .The candidate will need to have a solid grounding within both Cyber Threat Intelligence and understanding of wider cyber security practices.Led CTI op...Show more
    Last updated: 30+ days ago • Promoted
    Cyber Security Analyst

    Cyber Security Analyst

    CONSULTTRINITY SERVICES PRIVATE LIMITED • Mumbai
    Description : Role & responsibilities : - 3+ years of experience in vulnerability management, Red Teaming, includi...Show more
    Last updated: 14 days ago • Promoted
    Threat Intelligence Platform Analyst - Ethical Hacking

    Threat Intelligence Platform Analyst - Ethical Hacking

    OA Compserve Pvt ltd • Mumbai
    Description : Requirement Brief : - Total experience of 5+ years out of which minimum 5 years of experience in Thre...Show more
    Last updated: 26 days ago • Promoted
    Cybersecurity risk analyst

    Cybersecurity risk analyst

    Confidential • Mumbai, India
    Conduct risk assessments of customers' potential and existing vendors to identify and mitigate potential risks.Monitor and track vendor risk profiles and regularly report on potential and existing ...Show more
    Last updated: 13 days ago • Promoted
    Cyber Security Analyst

    Cyber Security Analyst

    DraconX • Kalyan-Dombivli, IN
    DraconX is at the forefront of transforming cutting-edge ideas into intelligent, scalable digital solutions.As pioneers in AI business automation and AI-driven SaaS platforms, we specialize in crea...Show more
    Last updated: 10 days ago • Promoted
    Cyber Threat Intelligence Analyst

    Cyber Threat Intelligence Analyst

    Group-IB • Mumbai, IN
    Founded in 2003 and headquartered in Singapore, Group-IB is a leading creator of cybersecurity.Combating cybercrime is in the company’s DNA, shaping its technological capabilities to defend busines...Show more
    Last updated: 8 hours ago • Promoted • New!
    DCO Sr. Analyst

    DCO Sr. Analyst

    Deutsche Bank • Mumbai, India
    Job Title : DCO - Divisional Risk and Controls - Data Analytics and Automation Specialist.Corporate Title : AVP / Associate. Divisional Control Office (DCO) is responsible for supporting the business ...Show more
    Last updated: 1 day ago • Promoted
    Security Operations Centre Analyst - SIEM Tools

    Security Operations Centre Analyst - SIEM Tools

    Information technology • Thane
    Availability : Immediate to 15 days Location : Mumbai (Thane) - Fully Work from Office Position : SOC Analyst (Sentin...Show more
    Last updated: 30+ days ago • Promoted
    Cyber Security Analyst

    Cyber Security Analyst

    Confidential • Mumbai, India
    Cyber Security,Quality Manager,Cyber Security Audits,RBI Cybersecurity Framework.Note : This is a requirement for one of the Workassist Hiring Partner. Job Duties & responsibilities : -.Perform cyber s...Show more
    Last updated: 30+ days ago • Promoted