Technology & Innovation Centre

Cyber Security Tester

Kolkata, West Bengal
Work Type: Full Time
Apply Now

INT is hiring a skilled Vulnerability Assessment and Penetration Testing (VAPT) Engineer to strengthen our application and infrastructure security. The ideal candidate will have hands-on experience in identifying, exploiting, and reporting security vulnerabilities across web applications, APIs, and internal/external environments.

Key Responsibilities

  • Perform Vulnerability Assessment and Penetration Testing (VAPT) for:

  • Web applications

    • APIs

    • Internal and external projects

  • Conduct manual penetration testing using industry-standard tools, including:

    • Burp Suite (Proxy, Repeater, Intruder, Scanner, Decoder)

  • Identify, analyze, and exploit security vulnerabilities such as:

    • OWASP Top 10 vulnerabilities (SQL Injection, XSS, CSRF, IDOR, SSRF, etc.)

    • Authentication and authorization flaws

    • Session management vulnerabilities

    • Access control and business logic issues

  • Prepare detailed VAPT reports including:

    • Risk rating and severity classification

    • Proof of Concept (PoC)

    • Impact analysis

    • Clear remediation and mitigation recommendations

  • Collaborate closely with development and QA teams to:

    • Explain vulnerabilities in a clear and actionable manner

    • Validate fixes implemented by development teams

    • Perform re-testing to ensure vulnerabilities are fully remediated

  • Conduct secure configuration reviews and basic code reviews from a security standpoint.

  • Stay up to date with:

    • Latest security threats and attack techniques

    • Emerging vulnerabilities and exploits

    • Industry best practices and security standards

Required Skills & Qualifications

  • Strong understanding of web application security concepts

  • Hands-on experience with Burp Suite

  • In-depth knowledge of OWASP Top 10

  • Experience in manual penetration testing

  • Familiarity with HTTP/HTTPS, REST APIs, cookies, tokens, and sessions

  • Ability to write clear and professional security reports

  • Strong analytical and problem-solving skills

Good to Have (Optional)

  • Experience with additional security tools (Nmap, Nikto, SQLmap, etc.)

  • Knowledge of secure coding practices

  • Familiarity with cloud security basics (AWS/Azure/GCP)

  • Security certifications (CEH, eJPT, OSCP, GWAPT – preferred but not mandatory)

Submit Your Application

You have successfully applied
  • You have errors in applying
Social Network and Web Links
Provide us with links to see some of your work (Git/ Dribble/ Behance/ Pinterest/ Blog/ Medium)