Group Specialist - Penetration Testing (Application & Infrastructure Security)

Role Overview

The ideal candidate should bring a balanced background across application security testing and infrastructure penetration testing, combined with the ability to write scripts, build tooling, automate test cases, analyze code/configurations, and integrate AI-enabled security tools into the testing lifecycle.

What You Will Do

Perform hands-on penetration testing of web applications, APIs, mobile backends, middleware, and custom business applications. Conduct authenticated and unauthenticated assessments across internet-facing and internal applications.

Why It Might Be a Fit

The role requires close collaboration with engineering, infrastructure, cloud, SOC, architecture, and product teams to validate security posture, identify exploitable weaknesses, and drive remediation.

Requirements

• Bachelor’s degree in computer science or equivalent
• 10-12 years of experience in application and infra pen testing
• Good understanding in E-commerce, logistics, supply chain & port operations applications
• Experience in establishing cyber & third-party risk management processes
• Working knowledge of ISO 27001, COBIT 2019 etc.
• Experience in working with Multinational Companies (MNC)