Experience analyzing, assessing, reproducing, and responding to security vulnerabilities, especially from bug bounty submissions.
Understanding of platform-specific risks and vulnerabilities (e.g., iOS, Android).
Subject matter expertise in at least one penetration testing domain (Infrastructure, Web, or Mobile).
2. Technical Skills & ResponsibilitiesStrong web application testing experience.
Ability to perform dynamic and static testing along with thorough reporting.
Ability to explain security issues clearly to both technical and non-technical teams.
Proven programming and scripting skills.
3. Soft Skills & CollaborationStrong verbal and written English communication skills.
Ability to communicate effectively with both technical and non-technical stakeholders.
Critical thinking and risk articulation skills.
4. Experience & Domain KnowledgeMinimum 4 years of hands-on penetration testing experience.
Experience in vulnerability triage, assessment, and prioritization.
5. Candidate AvailabilityCandidate is available to join within 15–30 days.
Candidate is on notice period from 30 to 45 days.
6. Good to HaveParticipation in Bug Bounty programs.
Hands-on experience with OWASP MASVS and MSTG.
Experience with secure development practices and DevSecOps integration.