🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
Cookies & analytics consent
We serve candidates globally, so we only activate Google Tag Manager and other analytics after you opt in. This keeps us aligned with GDPR/UK DPA, ePrivacy, LGPD, and similar rules. Essential features still run without analytics cookies.
Read how we use data in our Privacy Policy and Terms of Service.
🤖 15+ AI Agents working for you. Find jobs, score and update resumes, cover letter, interview questions, missing keywords, and lots more.
Art Technology and Software • Kochi, Kerala, India
Salary: INR 1,000,000 - INR 1,200,000 / year
Role & seniority
Application Security Expert — Red Team / Penetration Tester
6–8 years in application security, penetration testing, or red teaming
Stack/tools
Offensive/assessment: Metasploit, Burp Suite, Cobalt Strike, Kali
Languages: Python, Java, C/C++, PowerShell, Bash
Domains: web, mobile, cloud (AWS/Azure/GCP), networks, containers, Kubernetes, CI/CD
Frameworks: MITRE ATT&CK, threat intelligence
Other: adversary emulation, exploit development, social engineering, physical testing
Top 3 responsibilities
Conduct full-scope red team engagements across web, mobile, cloud, network, and physical domains
Perform adversary emulation, exploit vulnerabilities, test detection/response, and provide remediation-focused reports
Collaborate with development, DevOps, and security teams to embed security testing early and influence secure design; retest fixes and automate workflows; prepare reports and executive summaries
Must-have skills
6–8 years in application security/penetration testing/red teaming
Proficiency with Metasploit, Burp Suite, Cobalt Strike, Kali
Strong exploitation skills across web, network (Kerberos, SMB, LDAP), and cloud (IAM, misconfig)
Proficient in Python, Java, C/C++, PowerShell, or Bash
Solid understanding of web architecture, AI/LLM security, API security, networking, cloud security, containers, and CI/CD
Nice-to-haves
Application Security Expert – Red Team / Penetration Tester
Position Overview
We seek an experienced Application Security Expert to join our Red Team. The role involves identifying and exploiting vulnerabilities across applications and IT environments, simulating real-world cyberattacks, performing advanced penetration testing, and providing security insights throughout the SDLC.
Key Responsibilities
Conduct full-scope red team engagements across web, mobile, cloud, network, and physical domains. Perform adversary emulation using MITRE ATT&CK and threat intelligence. Use and develop custom exploits and offensive tools (Cobalt Strike, Metasploit, Burp Suite, Kali). Execute covert social engineering and physical security tests. Exploit vulnerabilities and test detection/response capabilities. Test web/mobile apps, APIs, cloud (AWS/Azure/GCP), networks, containers, Kubernetes, and CI/CD. Identify complex vulnerabilities (logic flaws, auth issues, deserialization, privilege escalation). Provide detailed remediation-focused reports. Perform security assessments on AI/ML systems, including Large Language Models (LLMs), prompt injection testing, model abuse, data leakage risks, and adversarial attacks Work with dev, DevOps, and security teams to embed security testing early. Influence secure design and promote security awareness. Retest fixes and automate testing workflows. Prepare technical reports and executive summaries; present findings to teams and leadership.
Required Skills & Qualifications
6 - 8 years in application security, penetration testing, or red teaming. Expertise with offensive tools (Metasploit, Burp Suite, Cobalt Strike, Kali). Strong exploitation skills across web, network (Kerberos, SMB, LDAP), and cloud (IAM, misconfig). Proficient in Python, Java, C/C++, PowerShell, or Bash. Strong understanding of web architecture, AI, LLM, API security, networking, cloud security, containers, and CI/CD.
Certifications
OSCP – Required OSCE / OSWE – Highly preferred CEH, GWAPT, OSEP, CRTO – Preferred
Skills: metasploit,smb,ldap,penetration testing,kerberos,security,burp suite,red team