Vulnerability Application & API Security Testing
- Zensar
- 5 - 10 years
- Pune
- 3 days ago
- Email to a friend
- Report this job
Job Description
Job Title: Application Security / VAPT Consultant
Location: Kharadi, Pune
Experience: 4 8 Years
Employment Type: Full-Time
Work Mode: Work from Office in Kharadi, Pune
About Zensar
Zensar Technologies is a leading digital solutions and technology services company focused on helping enterprises reimagine their digital journeys with innovation, agility, and security at the core.
Role Summary
We are seeking a highly skilled Application Security / VAPT Consultant to perform Web and API security assessments, support secure SDLC initiatives, and ensure compliance with industry security standards. The role requires hands-on expertise in OWASP vulnerabilities, penetration testing methodologies, and security tools.
Key Responsibilities
Application & API Security Testing
- Perform Web Application VAPT and API VAPT (REST & JSON-based APIs)
- Identify security vulnerabilities aligned with:
- OWASP Top 10 Web Applications
- OWASP Top 10 APIs
- Conduct manual and automated security testing
Penetration Testing
- Perform authenticated and unauthenticated testing
- Exploit vulnerabilities and validate security impact
- Conduct logic-based and authorization bypass testing
Tools & Technologies
- Use industry-standard tools including:
- Burp Suite (Proxy, Repeater, Intruder, Scanner)
- OWASP ZAP
- Postman, Nuclei, Nikto
- Assist with tool configuration and tuning
Reporting & Documentation
- Prepare detailed VAPT reports including:
- Risk rating (CVSS)
- Proof of Concept (PoC)
- Remediation recommendations
- Present findings to technical and business stakeholders
Secure Development Support
- Collaborate with developers to:
- Fix vulnerabilities
- Review secure coding practices
- Provide AppSec guidance during SDLC
- Support remediation validation and re-testing
Mandatory Skills
- Strong hands-on experience in:
- Web Application VAPT
- API Security Testing
- In-depth understanding of:
- OWASP Top 10 (Web & API)
- Proficiency with:
- BurpSuite & OWASP ZAP
- Knowledge of:
- HTTP/HTTPS, Cookies, Sessions
- Authentication & Authorization mechanisms
- JWT, OAuth 2.0, API keys
Desired Skills (Good to Have)
- Experience in Application Security (AppSec)
- Familiarity with SAST, DAST, and SCA tools
- Knowledge of secure coding (Java / .NET / JavaScript)
- Experience in DevSecOps security integration
- Client interaction and security advisory experience
Certifications (Preferred)
- CEH (ANSI)
- CEH Practical
- OSCP
- Any relevant AppSec or cloud security certification
Soft Skills
- Strong analytical and problem-solving skills
- Excellent communication and documentation abilities
- Ability to work independently and with cross-functional teams
- Client-handling and stakeholder management skills
Why Join Zensar?
- Work on enterprise-scale, global security programs
- Exposure to modern AppSec & cloud security initiatives
- Career growth through certifications & learning platforms
- Collaborative and innovation-driven environment
Job Classification
Industry: IT Services & ConsultingFunctional Area / Department: Engineering - Software & QARole Category: Quality Assurance and TestingRole: Security Testing EngineerEmployement Type: Full timeContact Details:
Company: ZensarLocation(s): Pune
Keyskills: Burp Suite Security Testing Penetration Testing OWASP API Penetration Vapt Vulnerability Assessment
Similar positions
Zensar
Zensar Technologies Limited Zensar Technologies is among the top 25 software and BPO services providers in India. It is an RPG Group company. Headquartered in India, Zensar Technologies has marketing presence in US, Europe and Asia Pacific regions. The company has operations and a customer bas...
Job Listings
We are in open beta version of website, please let us know if any issues, at: info(at)indigojobs.in