| Company | KPMG India |
| Role | VAPT – Application Security (AppSec) / Red Teaming (ACon) |
| Location | Bengaluru |
| Experience | 3+ years (2–3 years in client-facing cybersecurity consulting preferred) |
| Employment Type | Full-time |
| Education | BCom, BE/BTech, MCA, MTech, MBA/PGDM or equivalent |
| Apply Before | 31 July 2026 |
| Key Responsibilities | Perform VAPT on web, mobile, ERP (SAP), thick client applications, infrastructure and cloud; conduct Red Team engagements; perform manual penetration testing; identify OWASP Top 10 vulnerabilities (SQL Injection, XSS, CSRF, Authentication/Authorization issues, Security Misconfiguration); conduct vulnerability assessments; research APTs and malware; prepare technical reports; provide remediation recommendations; interact with clients; mentor team members; support RFP/RFI responses and business proposals. |
| Technical Skills | OWASP, NIST, CIS, Network Security, OSI/TCP-IP, Windows Security, Linux/UNIX Security, Web & Mobile Security, Cloud Security, Application Security, Red Teaming, Kali Linux, Manual Penetration Testing, Database Security (MySQL, Oracle, NoSQL), Security Architecture, Threat Intelligence, Endpoint & Perimeter Security, Scripting/Programming (preferred). |
| Preferred Certifications | CEH, ECSA, OSCP, CISSP, CCSK, OCSE, CCSP, AWS Security. |
| Soft Skills | Client-facing consulting, technical report writing, stakeholder management, team leadership, communication, proposal writing, program delivery. |
| Suitable For | Cybersecurity professionals with 3–6 years of experience in VAPT, Application Security, Ethical Hacking, Red Teaming, Penetration Testing, or Cybersecurity Consulting seeking a Big Four consulting role. |