VAPT Engineer / Penetration Tester

Job Description

Penetration Testing & VAPT Conduct manual and automated penetration testing on Web Applications, APIs, and ERP/SaaS platforms. Perform Vulnerability Assessment (VA) and Penetration Testing (PT) using industry-standard tools and methodologies. Identify, validate, and exploit vulnerabilities such as: SQL Injection, XSS, CSRF Authentication & Authorization flaws Broken Access Control Security Misconfigurations API security weaknesses Application & API Security Perform Web Application and API Security Testing aligned with OWASP Top 10 and OWASP API Top 10. Review application flows, business logic, and role-based access in ERP modules (Finance, HR, Procurement, Project, etc.). Validate secure authentication, session management, and data protection mechanisms.

Required Skills