KPMG : VAPT – Application Security (AppSec) / Red Teaming (ACon)

CategoryDetails
CompanyKPMG India
RoleVAPT – Application Security (AppSec) / Red Teaming (ACon)
LocationBengaluru
Experience3+ years (2–3 years in client-facing cybersecurity consulting preferred)
Employment TypeFull-time
EducationBCom, BE/BTech, MCA, MTech, MBA/PGDM or equivalent
Apply Before31 July 2026
Key ResponsibilitiesPerform VAPT on web, mobile, ERP (SAP), thick client applications, infrastructure and cloud; conduct Red Team engagements; perform manual penetration testing; identify OWASP Top 10 vulnerabilities (SQL Injection, XSS, CSRF, Authentication/Authorization issues, Security Misconfiguration); conduct vulnerability assessments; research APTs and malware; prepare technical reports; provide remediation recommendations; interact with clients; mentor team members; support RFP/RFI responses and business proposals.
Technical SkillsOWASP, NIST, CIS, Network Security, OSI/TCP-IP, Windows Security, Linux/UNIX Security, Web & Mobile Security, Cloud Security, Application Security, Red Teaming, Kali Linux, Manual Penetration Testing, Database Security (MySQL, Oracle, NoSQL), Security Architecture, Threat Intelligence, Endpoint & Perimeter Security, Scripting/Programming (preferred).
Preferred CertificationsCEH, ECSA, OSCP, CISSP, CCSK, OCSE, CCSP, AWS Security.
Soft SkillsClient-facing consulting, technical report writing, stakeholder management, team leadership, communication, proposal writing, program delivery.
Suitable ForCybersecurity professionals with 3–6 years of experience in VAPT, Application Security, Ethical Hacking, Red Teaming, Penetration Testing, or Cybersecurity Consulting seeking a Big Four consulting role.

Click here to apply

Leave a Comment