| Request: |
Information Technology_IND - IND_Developer |
| Qty: |
1 |
| Candidate Submission Limit Per Supplier: |
3 |
| Candidate Submission Limit Per Request: |
0 |
| Desired Start Date: |
3/18/2026 |
| End Date: |
9/18/2026 |
| Hrs/Wk: |
45.00 |
| MSP Owner: |
Adhikari, Kashmira
|
| GBAMS Requisition ID: |
10606656 |
| Estimated Expense: |
Rs0.00 (Sum of Expense * Quantity of Candidates) |
|
| Job Description: |
Role Descriptions: Pentester - OSCP certifiedVulnerability Assessment Penetration Testing (VAPT) Analyst with 25 years of hands-on experience in assessing the security of Web Applications| APIs| and Mobile Applications (Android iOS). Key Responsibilities 1. Conduct in-depth penetration testing on Web| API| and Mobile applications using both manual techniques and automated tools. 2. Identify and exploit real-world security vulnerabilities including but not limited to IDOR| SSRF| insecure storage| authentication flaws| and rootjailbreak detection bypasses. 3. Prepare clear| comprehensive| and actionable vulnerability assessment reports. 4. Collaborate with development| DevOps| and product teams to explain findings and validate fixes. 5. Maintain up-to-date knowledge of current security threats| tools| and techniques. 6. Ensure all findings align with industry standards such as OWASP Top 10 OWASP API Top 10 and OWASP Mobile Security Testing Guide (MSTG) MASVS Required Skills Tools Expertise 1. Strong experience in application-level VAPT (Web| API| Mobile) 2. Deep understanding of mobile app attack surfaces and traffic interception 3. Proficient in Burp Suite (Pro level usage) Postman| MobSF Frida| Jadx| APKTool| Objection ADB| Xcode| Charles Proxy| Fiddler Preferred Qualifications 1. Certification OSCP (or equivalent hands-on certification)
Essential Skills: Pentester - OSCP certifiedVulnerability Assessment Penetration Testing (VAPT) Analyst with 25 years of hands-on experience in assessing the security of Web Applications| APIs| and Mobile Applications (Android iOS). Key Responsibilities 1. Conduct in-depth penetration testing on Web| API| and Mobile applications using both manual techniques and automated tools. 2. Identify and exploit real-world security vulnerabilities including but not limited to IDOR| SSRF| insecure storage| authentication flaws| and rootjailbreak detection bypasses. 3. Prepare clear| comprehensive| and actionable vulnerability assessment reports. 4. Collaborate with development| DevOps| and product teams to explain findings and validate fixes. 5. Maintain up-to-date knowledge of current security threats| tools| and techniques. 6. Ensure all findings align with industry standards such as OWASP Top 10 OWASP API Top 10 and OWASP Mobile Security Testing Guide (MSTG) MASVS Required Skills Tools Expertise 1. Strong experience in application-level VAPT (Web| API| Mobile) 2. Deep understanding of mobile app attack surfaces and traffic interception 3. Proficient in Burp Suite (Pro level usage) Postman| MobSF Frida| Jadx| APKTool| Objection ADB| Xcode| Charles Proxy| Fiddler Preferred Qualifications 1. Certification OSCP (or equivalent hands-on certification)
Desirable Skills:
Keyword:
Skills: Vulnerability Assessment and Penetration Testing
Experience Required: 4-6 |
| Comments for Suppliers: |
|
|
| |
|
|
| Rate Card Class: |
IND_Developer |
| Category: |
Category 4 |
| Level: |
Level II |
| Bill Rate: |
Rs70,000.00 - Rs130,000.00 Monthly NOOT |
| Markup: |
$0.00 |
|
