CyRAACS - Team Lead - VAPT

We are looking for a highly skilled Tech Lead VAPT with strong expertise in identifying complex security vulnerabilities across web, mobile, infrastructure, and cloud environments. The ideal candidate will bring a combination of technical depth, leadership capability, and mentorship mindset to guide a team of security consultants and deliver high-quality assessments for enterprise clients.

Qualifications :

- BE/B. Tech with specialization in cyber security, MCA, M. Tech / masters in information security, or Forensics Analysis Knowledge.

- 2- 5 years hands on experience working in VAPT, working for cybersecurity industry along with hands on experience in managing projects.

- Candidate must have cybersecurity related certifications such as CEH or eJPT or eWPT or CRTP or any other similar certification.

- Candidates having hands on experience in red teaming or source code review or cloud configuration review in addition to VAPT are preferable.

- Candidates having CRTP, eWPT, CCSP, OSCP, PNPT are preferable.

Role and Responsibility :

- Lead a team of VAPT consultants and ensure timely delivery of security assessments across multiple projects.

- Perform and guide deep-dive security assessments including business logic flaw identification, chained exploitation, and evasion techniques.

- Review test reports for technical accuracy, completeness, and client readiness.

- Act as a primary escalation point for technical blockers and client clarifications.

- Collaborate with project managers and clients to scope assessments, track timelines, and meet SLAs.

- Provide technical mentoring to junior team members; conduct knowledge-sharing sessions, peer reviews, and hands-on demonstrations.

- Maintain up-to-date knowledge of the latest threat vectors, vulnerabilities, tools, and techniques.

- Drive quality control, innovation, and improvement initiatives within the testing methodolog

Technical Skills Required :

- 3+ years of hands-on experience in VAPT, including complex application testing scenarios.

- Strong understanding of OWASP Top 10, SANS CWE, MITRE ATT&CK framework.

- Proven ability to identify and exploit advanced vulnerabilities, including logic flaws, authorization bypass, chained exploits, etc.

- Experience in client-facing roles, including scoping calls, walkthroughs, and debriefs.

- Prior experience in leading small to mid-sized technical teams or mentoring junior testers.