CrawlJobs Logo

VAPT Manager

ambconline.com Logo

AMBC

Location Icon

Location:
India , Coimbatore

Category Icon
Category:
IT - Software Development

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Core Responsibilities: Conduct end-to-end Vulnerability Assessment and Penetration Testing (VAPT) across web applications, mobile apps, networks, Active Directory, APIs, and enterprise systems. Perform manual and automated penetration testing with strong hands-on depth in web, network, and AD security testing. Execute Red Teaming / adversary simulation activities, including privilege escalation and lateral movement. Perform cloud security assessments across AWS, Azure, and GCP environments. Review and assess security configurations of network devices, servers, databases, and cloud services. Evaluate CI/CD pipelines and DevSecOps practices to identify security gaps in build and deployment processes. Analyze findings, assign risk ratings, and prepare clear VAPT reports with impact analysis and actionable remediation guidance. Collaborate with development, DevOps, IT, and client stakeholders to prioritize and support vulnerability remediation. Continuously track emerging threats and attack techniques and enhance testing methodologies accordingly. Certifications (At Least One Mandatory): CRTO – Certified Red Team Operator; OSCP – Offensive Security Certified Professional; CRTP – Certified Red Team Professional; GPEN – GIAC Penetration Tester; CEH – Certified Ethical Hacker; CompTIA PenTest+; CISSP / CISM (Good to have for senior / leadership roles). Key Information: Industry: IT Consulting; Work Experience: 8 to 12 years; City: Coimbatore; State/Province: Tamilnadu; Country: India; Zip/Postal Code: 641001.

Job Responsibility:

  • Conduct end-to-end Vulnerability Assessment and Penetration Testing (VAPT) across web applications, mobile apps, networks, Active Directory, APIs, and enterprise systems
  • Perform manual and automated penetration testing with strong hands-on depth in web, network, and AD security testing
  • Execute Red Teaming / adversary simulation activities, including privilege escalation and lateral movement
  • Perform cloud security assessments across AWS, Azure, and GCP environments
  • Review and assess security configurations of network devices, servers, databases, and cloud services
  • Evaluate CI/CD pipelines and DevSecOps practices to identify security gaps in build and deployment processes
  • Analyze findings, assign risk ratings, and prepare clear VAPT reports with impact analysis and actionable remediation guidance
  • Collaborate with development, DevOps, IT, and client stakeholders to prioritize and support vulnerability remediation
  • Continuously track emerging threats and attack techniques and enhance testing methodologies accordingly

Requirements:

  • Conduct end-to-end Vulnerability Assessment and Penetration Testing (VAPT) across web applications, mobile apps, networks, Active Directory, APIs, and enterprise systems
  • Perform manual and automated penetration testing with strong hands-on depth in web, network, and AD security testing
  • Execute Red Teaming / adversary simulation activities, including privilege escalation and lateral movement
  • Perform cloud security assessments across AWS, Azure, and GCP environments
  • Review and assess security configurations of network devices, servers, databases, and cloud services
  • Evaluate CI/CD pipelines and DevSecOps practices to identify security gaps in build and deployment processes
  • Analyze findings, assign risk ratings, and prepare clear VAPT reports with impact analysis and actionable remediation guidance
  • Collaborate with development, DevOps, IT, and client stakeholders to prioritize and support vulnerability remediation
  • Continuously track emerging threats and attack techniques and enhance testing methodologies accordingly
  • Certifications (At Least One Mandatory): CRTO – Certified Red Team Operator
  • OSCP – Offensive Security Certified Professional
  • CRTP – Certified Red Team Professional
  • GPEN – GIAC Penetration Tester
  • CEH – Certified Ethical Hacker
  • CompTIA PenTest+
  • CISSP / CISM (Good to have for senior / leadership roles)
  • Work Experience: 8 to 12 years

Nice to have:

CISSP / CISM (Good to have for senior / leadership roles)

Additional Information:

Job Posted:
January 03, 2026

Work Type:
On-site work
Icon
AMBC - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for VAPT Manager

Principal Security Engineer

We are seeking a visionary and hands-on Principal Security Engineer to architect...
Location
Location
United States , San Antonio
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in cybersecurity
  • At least 5 years dedicated to Application Security or Cloud Security engineering
  • Deep technical proficiency in AWS, including native security services (GuardDuty, Inspector, WAF, KMS) and IAM policy architecture
  • Strong coding/scripting background
  • Must be able to read and review code in languages such as Python, Go, Java, or Node.js
  • Expert knowledge of modern application security frameworks and standards, specifically OWASP Top 10, OWASP API Security Top 10
  • Proven experience implementing and managing DevSecOps pipelines (Jenkins, GitHub Actions) and toolchains (SonarQube, Snyk, Veracode, etc.)
  • Hands-on experience with Container Security (Docker, Kubernetes) and securing serverless architectures
  • Demonstrated ability to write clear, concise technical policies and procedures
Job Responsibility
Job Responsibility
  • Draft and own technical security policies and procedures for Engineering and Product teams
  • Serve as the primary security liaison to the Engineering and Delivery teams
  • Partner with the Head of InfoSec and GRC teams to maintain our Unified Control Framework
  • Architect and mature the Secure Software Development Lifecycle (SSDLC)
  • Lead threat modeling for new features and major architectural changes
  • Manage the Vulnerability Assessment and Penetration Testing (VAPT) program
  • Act as a mentor to developers, providing "just-in-time" training on secure coding practices
  • Own the security architecture for our multi-cloud environment (AWS, Azure, GCP)
  • Pioneer our AI Security Strategy
  • Design and maintain Cloud Security Posture Management (CSPM) and Cloud Workload Protection (CWPP) strategies
Read More
Arrow Right

Security Consultant

BluBiz Solutions is currently seeking an experienced Security Consultant to prov...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
blubiz.com.au Logo
BluBiz Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of relevant IT, Assurance, Risk Management, or Cybersecurity support experience
  • Experience in Implementation of information security industry standards (ISO27001, PCIDSS) and other best practice frameworks for Enterprise clients
  • Proven experience in conducting security assessments such as VAPT evaluation, and documentation of client environment, infrastructure, processes, and operations
  • Ability to influence technical and management leaders to achieve the best Cyber Security outcomes
  • Extensive knowledge of security frameworks such as TOGAF, ISO-27001, NIST, HIPPA and PCI
  • Demonstrate the ability to translate business needs into architecture requirements
  • Strong business and risk analysis skills to drive security outcomes
  • Experience in architecting enterprise network and security solutions
  • Experience in working with one or multiple vendor solutions such as Cisco, Fortinet, Palo Alto
  • Strong client-facing skills with the ability to build relationships
Job Responsibility
Job Responsibility
  • Provide consultancy to clients on information security and architectural decisions
  • Be a trusted advisor and lead for delivery of cybersecurity and risk consulting client engagements that will include governance, risk and compliance reviews
  • Assist in driving growth of Cybersecurity and Risk practice through building solutions, and leading proposal development
  • Develop and deliver security strategy, architecture, and design for BluBiz clients
  • Deliver technical presentations tailored for technical and non-technical audiences from IT manager, executive and C-Level
  • Develop high-level and detailed security requirements relating to new opportunities
  • Prepare overall solution design, architecture, and implementation plan
  • Provide technical leadership to enterprise customers through a range of presales support functions including, supporting product evaluations, pre-sales technical consultation, post-sales support advocacy, and proactive needs analysis
  • Assist with networking and security solutions, product plans and roadmaps
Read More
Arrow Right

IT Security Specialist

Amla Commerce is looking for an experienced IT Security Specialist to join our t...
Location
Location
United States , Milwaukee
Salary
Salary:
Not provided
amla.io Logo
Amla Commerce
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Technology, or a related field
  • Minimum 2 Years of relevant work experience
  • Proven experience in infrastructure security, manual penetration testing, vulnerability assessment, and web application security
  • Strong knowledge of penetration testing tools and frameworks, including Burp Suite, Owasp Zap, and Metasploit Framework
  • Familiarity with OWASP Top 10 vulnerabilities and best practices for securing web applications
  • Experience with IDS/IPS tools for monitoring and preventing intrusions
  • Familiarity with wireless/Wi-Fi security protocols, encryption standards, and best practices
  • Knowledge of network and system security protocols, technologies, and best practices
  • Strong problem-solving skills and ability to think strategically about security risks and solutions
  • Excellent communication and interpersonal skills to effectively collaborate with cross-functional teams and stakeholders
Job Responsibility
Job Responsibility
  • Conduct manual penetration testing of infrastructure systems, networks, and applications to identify security vulnerabilities and potential risks
  • Utilize various penetration testing tools such as Nmap, Nessus, Burp Suite, Owasp Zap, and Metasploit Framework to identify and exploit vulnerabilities
  • Perform vulnerability assessments using both manual approaches and vulnerability assessment and penetration testing (VAPT) tools like Nessus, OpenVAS, and Qualys
  • Collaborate with the development team to enhance the security of web applications by implementing secure coding practices and addressing OWASP Top 10 vulnerabilities
  • Configure and manage web application firewalls (WAF) to protect against common web-based attacks
  • Implement and maintain infrastructure firewalls, ensuring that proper configurations are in place to protect the network and systems from unauthorized access
  • Manage IP access control lists and handle blocking/unblocking requests as per security policies
  • Ensure compliance with SOC (Security Operations Center) standards and participate in audits and assessments
  • Provide end user system security by deploying and managing antivirus solutions, conducting security awareness training, and responding to security incidents
  • Stay up-to-date with the latest security threats, vulnerabilities, and industry best practices to proactively identify potential risks and recommend mitigation strategies
Read More
Arrow Right

IT Audit & Compliance

ESK Technologies is seeking an experienced IT Audit & Compliance to join our tea...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
ESK Technologies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Familiarity with SEBI Cyber Security Guidelines
  • Understanding of ISO 27001, COBIT, NIST, SOC 2 frameworks
  • Awareness of SEBI circulars (e.g., System audit, VAPT frequency, cyber incident reporting timelines)
  • Conducting and documenting IT Risk Assessments
  • Understanding of risk rating (like × impact, residual risk, control mapping)
  • Hands-on with risk registers, risk treatment plans
  • Review of access Management, change management, backup, logging, resilience
  • Ensure event log generation, session handling, security controls are in place
  • Experience in tools like Nessus
  • Drafting & validating IT policies: password, backup, access, data retention, encryption
Job Responsibility
Job Responsibility
  • Ensuing SEBI Guidelines are followed going through new sebi rules which keep coming
  • Creating reports for multiple Audits and Submitting to exchange
  • Operational Audit (Evaluation of Company operations on IT/Security and Trading)
  • IT Risk Audit
  • Policy Enforcement
  • Documentation
  • Data protection Audits
  • Application Audits
  • Performing Internal Audits
  • Being updated with latest Audit Frameworks
Read More
Arrow Right

Deputy Manager – Cyber Audit

Deputy Manager – Cyber Audit role in IT consulting.
Location
Location
India , Mumbai
Salary
Salary:
Not provided
ambconline.com Logo
AMBC
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 4 to 7 years work experience
Job Responsibility
Job Responsibility
  • Conduct hands-on cyber security audits across network, application, and infrastructure environments
  • Perform network security audits, including firewalls, VPNs, network segmentation, and perimeter controls
  • Carry out application security audits and testing for web and mobile applications based on OWASP Top 10
  • Execute and support Vulnerability Assessment & Penetration Testing (VAPT) for networks and applications
  • Analyze scan results, validate vulnerabilities, and remove false positives
  • Map technical findings to ISO 27001, NIST, and CIS benchmarks and create audit observations
  • Prepare clear cyber audit and VAPT reports with risk ratings and remediation recommendations
  • Support client discussions and remediation validation in coordination with IT and security teams
Read More
Arrow Right

Trade ops website info management

Website Support & Content Oversight:Understand website features and stay updated...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
March 20, 2026
Flip Icon
Requirements
Requirements
  • Understand website features and stay updated on features available in other Market Infrastructure Institution’s website
  • Ensuring content is updated to maintain relevance and accuracy
  • Collaborate with IT/security teams to maintain website security and data protection
  • Maintain consistency in style, tone, and branding across all website pages
  • Coordinate with internal teams and external vendors to gather, review, and publish content
  • Ensure website content complies with Web Content Accessibility Guidelines (WCAG), GIGW standards, the Rights of Persons with Disabilities Act, and other applicable regulatory guidelines
  • Ability to understand business/technical requirement, liaison between the vendor and technical spocs for closures. eg. VAPT observation closure
  • Regularly track website for outdated or broken links, slow load times, malfunctioning features, etc.
  • Liaise with internal teams and vendors for implementing content changes and SEBI-mandated updates
  • Coordinate with vendors to ensure timely resolution of escalated website functionality issues
Job Responsibility
Job Responsibility
  • Website Support & Content Oversight
  • Website Audits and Vendor coordination
  • Adherence to Departmental SOPs
  • Record Keeping
Read More
Arrow Right

Application Penetration Tester

We are looking for security engineer who loves solving interesting problems and ...
Location
Location
Poland , Warszawa
Salary
Salary:
Not provided
https://www.bosch.pl/ Logo
Robert Bosch Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of combined experience in penetration testing and security engineering roles
  • Professional certifications such as OSCP, CEH, CISSP, CISM, or equivalent
  • Advanced level of understanding of OWASP Top 10, CVE, general security controls, and other foundational topics such as the latest web application system exploits
  • Attacker mindset for breaking the websites with practical knowledge of OWASP
  • Commanding knowledge of VAPT concepts and best practices, including the requirements for WhiteHat/ethical hacking
  • Expert understanding of the difference between a vulnerability assessment and a penetration test in the context of assessment scope, objectives, and deliverables
  • In depth experience with common automated VAPT tools such as Nessus, Burp Suite
  • Proficiency with other common attack tools and frameworks such as Wireshark, Kali, Metasploit, etc.
  • Working knowledge of DevSecOps, CIS Security benchmarks, scripting languages (Python, PowerShell, Bash) for automation
  • Fluent English (both verbal and written)
Job Responsibility
Job Responsibility
  • Black-box and Grey Box penetration test applications
  • Security testing including reverse engineering of Mobile applications (Android and iOS)
  • Create innovative attacks tools/automations for project specific needs
  • Communicate complex vulnerability results to technical and non-technical audience
  • Perform research and contribute to open-source community on new attack methodology, vulnerability findings
  • Scope penetration tests and contribute to penetration test project management
What we offer
What we offer
  • Competitive salary + annual bonus
  • Hybrid work with flexible working hours
  • Referral Bonus Program
  • Copyright costs for IT employees
  • Private medical care and life insurance
  • Cafeteria System with multiple benefits (incl. MultiSport, shopping vouchers, cinema tickets, etc.)
  • Prepaid Lunch Card
  • Number of benefits for families (for instance summer camps for kids)
  • Non-working day on the 31st of December
  • Fulltime
Read More
Arrow Right

Application Security Analyst

An application security analyst is a trained professional responsible for provid...
Location
Location
United States
Salary
Salary:
100000.00 - 115000.00 USD / Year
anntaylor.com Logo
Ann Taylor
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Education and/or Certifications in Computer Science, Information Systems, other related field, or equivalent work experience
  • 3-5+ years of IT work experience, with at least 2 years of experience working in Application security
  • Working experience with security testing tools (DAST, SAST, SCA)
  • Hands on experience with manual web application penetration testing (VAPT)
  • Proficient in Burp suite and Kali Linux tools
  • Experience on API testing
  • Knowledge of secure coding practices/frameworks such as OWASP, SSDF
  • Strong knowledge of application security principles
  • Knowledge on Threat Modeling and DevSecOps
  • Strong working knowledge of IT Security best practices
Job Responsibility
Job Responsibility
  • Conduct application security assessments to identify and mitigate security risks
  • Perform DAST scans for the internal and external applications
  • Conduct end-to-end Pentest engagement for E-commerce applications
  • Perform False positive analysis for vulnerabilities from scan results
  • Analyze the security risks and create vulnerability report with recommendations
  • Work collaboratively with cross-functional teams to identify and solve complex security problems
  • Work on ad hoc SAST scan requests and vulnerability analysis
  • Participate in incident response activities and provide technical guidance on security-related incidents
  • Develop and maintain technical documentation related to application security
What we offer
What we offer
  • Merchandise discount at select KnitWell Group brands
  • Support for individual development plus opportunities for career mobility
  • A culture of giving back – local volunteer opportunities, annual donation and volunteer match to eligible nonprofit organizations, and philanthropic activities
  • Medical, dental, vision insurance & 401(K)
  • Employee Assistance Program (EAP)
  • Time off – paid time off & holidays
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy