Role: VAPT Role
Experience: 5 to 8 years
Location: Bangalore
Work mode: Work from Office (hybrid)
Job Description:
Skills Required: Red Team Operations Certified, Red Team Ops Certified, OSCP,
Offensive Security Certified Professional, MITRE ATT&CK, OPSEC, Operational Security
Key Responsibilities:
•Plan and execute red team exercises simulating real-world threat actor behaviors.
•Conduct comprehensive penetration tests on internal and external networks,
applications (web, mobile, APIs), and cloud environments.
•Identify and exploit security flaws to assess the effectiveness of preventive and
detective controls.
•Develop custom tools, scripts, and techniques to aid in assessments and evade
detection.
•Collaborate with blue teams to improve detection and response capabilities.
•Prepare detailed reports outlining findings, proof-of-concepts, and recommended
mitigations.
•Stay current on emerging threats, offensive tactics, tools, and vulnerabilities.
•Assist with purple teaming and adversary emulation exercises.
Requirements:
•Bachelor's degree in Cybersecurity, Computer Science, or related field (or equivalent
experience).
•6+ years of hands-on experience in red teaming, offensive security, Infrastructure web
application, API, Cloud Pentesting.

•Proficient in tools such as Cobalt Strike, Metasploit, Nessus, Burp Suite, Nmap, Active
directory assessment, and custom scripting (Python, PowerShell, Bash).
•Strong understanding of MITRE ATT&CK framework, threat and adversary emulation.
•Knowledge of Windows and Linux internals, Active Directory, and cloud platforms
(AWS/Azure/GCP).
•Familiarity with social engineering tactics and phishing and physical security (a plus).
•Having experience in creating documentations for services
Certifications (Preferred):OSCP (mandatory)CRTP , OSCE, OSEP, CRTE, GPEN, GXPN, or
equivalent.
Key Areas to focus:
•Simulating real-world threat actor behaviours.
•Conduct penetration tests.
•Certifications (Preferred): OSCP (mandatory)CRTP, OSCE, OSEP, CRTE, GPEN, GXPN,
or equivalent