HamburgerMenu
hirist
AI/ML

Artificial Intelligence

Machine Learning

NLP

Generative AI

Predictive Modeling

Query Segmentation

AI Interface

LLM

Deep Learning

MLOps

Security Architect - AI

Cloud Architect - ML/AI

Data Scientist

Data Modeling

Data Analytics

Data Analytics & BI

Data Engineering

Software Development

Backend Development

Frontend Development

Full Stack

Mobile Applications

Emerging Technologies

DevOps / SRE

CyberSecurity

Quality Assurance

Platform Engineering / SAP/Oracle

Product / Design

Product Management

Business Analysis and Project Management

UI & Design

Others

Semiconductor/VLSI/EDA

Others

Application Security Engineer/Penetration Tester

CREWKARMA NETWORKS PRIVATE LIMITED
3 - 7 Years
Delhi
SecurityApplications SecurityPenetration TestingOWASPVulnerability ManagementSecurity Risk Management

Posted on: 26/03/2026

Job Description

About the Role :

We are looking for a high-impact Application Security Engineer / Penetration Tester with strong expertise in web, mobile, and API security testing, especially in transaction-heavy platforms.

This role goes beyond standard pentestingyou will actively simulate real-world fraud scenarios and identify vulnerabilities that can lead to financial loss, system misuse, or business risk.

Key Responsibilities :

- Perform end-to-end penetration testing across web applications, mobile apps, and APIs

- Conduct business logic testing & fraud simulation (bid manipulation, price tampering, replay attacks, fake approvals, maker-checker bypass)

- Identify, exploit, and help remediate critical vulnerabilities

- Test authentication, session/token security, and access controls

- Simulate attacks on transaction workflows and procurement systems

- Use tools like Burp Suite, OWASP ZAP, Kali Linux, Metasploit for advanced testing

- Perform API security testing, input manipulation, and attack scripting

- Collaborate with engineering teams to ensure secure design & remediation

- Highlight business impact of vulnerabilities (financial risk, fraud exposure, reputational impact)

Must-Have Requirements :

- 3+ years of experience in Penetration Testing / Application Security

- Hands-on experience in web, mobile, and API security testing

- Strong expertise in business logic testing & fraud simulation

- Proficiency in Burp Suite, OWASP ZAP, Kali Linux, Metasploit

- Strong understanding of authentication, session/token security, API security

- Experience in input manipulation, replay attacks, and workflow exploitation

- Ability to clearly articulate business impact of vulnerabilities

Education & Certifications (Mandatory) :

- B.Tech / BE / MCA (IT/CS or related)

- At least one certification : OSCP / OSWE / CEH Practical / CREST

Good to Have :

- Experience working on Government / PSU / high-scale financial systems

- Exposure to e-procurement or marketplace fraud patterns

- Knowledge of audit trails, transaction security, and compliance frameworks

Why This Role is Unique :

- Work on real-world fraud scenarios & high-risk systems

- Opportunity to secure large-scale transaction platforms

- High ownership in identifying business-critical vulnerabilities

- Fast-paced, impact-driven security role

If you have strong pentesting skills and want to work on high-impact security challenges, apply now!


info-icon

Did you find something suspicious?

Similar jobs that you might be interested in

Posted by

Jai Goyal

Business Head at CREWKARMA NETWORKS PRIVATE LIMITED

Last Active: 30 Apr 2026

Job Views:  
182
Applications:  56
Recruiter Actions:  37

Posted in

CyberSecurity

Functional Area

IT Security

Job Code

1623955

Jobs by location

Interview Questions for you

View All
Blog for regisnation

How to Write Leave Application for Urgent Work: Format & Samples (2025)

Blog for regisnation

Top 90+ Machine Learning Interview Questions and Answers

Blog for regisnation

Top 40+ Deep Learning Interview Questions and Answers