Advanced Penetration Testing Specialist

Job Title : Advanced Penetration Testing Specialist

Location : Pune, Maharasthra, India

Job Type : Full Time (On-premise)

Job Summary

We are seeking a highly skilled Advanced Penetration Testing Specialist with 4–6 years of hands-on experience in vulnerability assessment, exploitation and AI / ML-based security testing. The ideal candidate will possess a deep understanding of offensive security methodologies, advanced exploitation techniques and the security challenges of modern AI-driven applications. You will be responsible for performing comprehensive security testing across applications, infrastructure, APIs, cloud and AI / ML environments, while developing custom exploits and advanced threat simulations.

Key Responsibilities

Conduct end-to-end penetration testing for web, mobile, APIs, networks, cloud, IoT and AI / ML systems.

Identify, validate, and exploit vulnerabilities using manual and automated techniques.

Develop and execute custom exploits, payloads and proof-of-concepts for real-world attack simulations.

Perform AI / ML-focused penetration testing, including adversarial attacks, model inversion, prompt injection and data poisoning.

Lead red team engagements and advanced threat emulation exercises.

Research and document zero-day vulnerabilities and emerging attack vectors.

Build automation scripts and AI-powered tools for reconnaissance, exploitation and reporting.

Conduct cloud penetration testing (AWS, Azure, GCP) to identify and exploit misconfigurations.

Produce high-quality security reports with CVSS scoring, business impact analysis and clear remediation steps.

Collaborate with DevSecOps, SOC and engineering teams to integrate security improvements.

Stay updated on latest offensive techniques, AI / ML security research, and industry tools.

Required Skills & Experience

4–6 years in offensive security, penetration testing, or security research.

Strong knowledge of PTES, OWASP Top 10, SANS CWE Top 25, MITRE ATT&CK.

Proficiency in manual exploitation and post-exploitation techniques.

Hands-on experience with Metasploit, Burp Suite Pro, Nmap, Nessus, Cobalt Strike, Nuclei, ZAP, etc.

Strong scripting / programming skills (Python, Go, Bash, PowerShell) with experience in AI / ML libraries (TensorFlow, PyTorch preferred).

Experience in AI / ML security testing and adversarial ML attack simulations.

Knowledge of reverse engineering, binary exploitation and fuzzing techniques.

Proven experience in cloud penetration testing and exploiting misconfigurations.

Preferred Certifications

OSCP / OSCE / OSEP / OSEE

CREST CRT / CCT-INF

GIAC GPEN / GXPN

CEH (Practical)

Offensive AI / ML Security certification (preferred)