Home › Companies › Ehpv Fa Em2 Oraclecloud Com CX › Group Specialist - Penetration Testing (Application & Infrastructure Security)
Group Specialist - Penetration Testing (Application & Infrastructure Security)
Ehpv Fa Em2 Oraclecloud Com CX · CTIPL - Gurgaon, Gurgaon, Haryana, IN · Remote · Active · Oracle Recruiting Cloud / Fusion HCM
Job facts
| Field | Value |
|---|---|
| Company | Ehpv Fa Em2 Oraclecloud Com CX |
| Title | Group Specialist - Penetration Testing (Application & Infrastructure Security) |
| Normalized title | - |
| Department / team | IT Development |
| Location | Haryana, IN, United States |
| Work model | Remote / Remote |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | Oracle Recruiting Cloud / Fusion HCM |
| Posted / first seen | 2026-06-02 / 2026-06-02 |
| Changed / last seen | 2026-06-06 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Ehpv Fa Em2 Oraclecloud Com CX. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Oracle Recruiting Cloud / Fusion HCM. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Haryana. | Open |
| Department jobs | Active postings in IT Development. | Open |
| Work model jobs | Active Remote postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Ehpv Fa Em2 Oraclecloud Com CX |
| Source | 53da7105-3932-4efb-bc7c-e59315084296 |
| ATS provider | Oracle Recruiting Cloud / Fusion HCM |
Description
Description
KEY ACCOUNTABILITIES
The ideal candidate should bring a balanced background across application security testing and infrastructure penetration testing, combined with the ability to write scripts, build tooling, automate test cases, analyze code/configurations, and integrate AI-enabled security tools into the testing lifecycle. The role requires close collaboration with engineering, infrastructure, cloud, SOC, architecture, and product teams to validate security posture, identify exploitable weaknesses, and drive remediation.
Modern testing workflows increasingly include AI-assisted capabilities. For example, PortSwigger documents Burp AI as a way to improve testing efficiency, understand complex technologies, and streamline authentication setup, while still keeping the tester in control. Microsoft also publishes current guidance for both penetration testing in Azure and LLM red teaming, which reflects the growing expectation that offensive security teams can test both traditional systems and AI-enabled systems.
Assist BUs in conducting access control reviews of their applications & systems
Perform hands-on penetration testing of web applications, APIs, mobile backends, middleware, and custom business applications .
Assess applications for vulnerabilities such as:
Broken access control / BOLA
Authentication and session management flaws
Injection vulnerabilities
Server-side request forgery (SSRF)
Business logic abuse
Client-side security weaknesses
Insecure deserialization
Misconfigurations and secrets exposure
Conduct authenticated and unauthenticated assessments across internet-facing and internal applications.
Test REST, SOAP, GraphQL, and modern API architectures.
Review application architecture, trust boundaries, and data flows to identify realistic attack paths.
Validate remediation fixes and perform re-testing.
Perform infrastructure penetration testing across: Internal and external networks Active Directory / Windows environments Linux and Unix servers Network devices and segmentation controls VPN, remote access, and identity-connected infrastructure Cloud environments and hybrid infrastructure Assess privilege escalation paths, lateral movement opportunities, credential exposure, trust abuses, and weak administrative controls. Conduct attack path testing across enterprise environments to identify high-risk chaining opportunities. Evaluate resilience of endpoint, network, identity, and server controls against real-world attack techniques. Evaluate and integrate modern AI-enabled testing capabilities into the pentesting workflow, such as:
AI-assisted web testing and workflow understanding AI-enhanced reporting/documentation AI-supported attack-path reasoning AI-assisted code and configuration review AI red teaming for LLM- or agent-based applications where relevnt Always act as an ambassador for DP World when working; promoting and demonstrating positive behaviors in harmony with DP World’s Principles, values and culture; ensuring the highest level of safety is applied in all activities; understanding and following DP World’s Code of Conduct and Ethics policies
Perform other related duties as assigned
QUALIFICATIONS, EXPERIENCE AND SKILLS
Knowledge and Experience
Bachelor’s degree in computer science or equivalent
Should have 10-12 years of experience in application and infra pen testing.
Good understanding in E-commerce, logistics, supply chain & port operations applications will be an added advantage
Experience in establishing cyber & third-party risk management processes
Working knowledge of ISO 27001, COBIT 2019 etc.
Experience in working with Multinational Companies (MNC) is preferable
Soft Skills
Excellent communication & analytical skills Program and Project management skills Time management skills Team player and conflict management skills Coaching / guiding skills Ability to adapt in a complex environment, loves challenges, with the will and drive to learn new things on his/her own Cultural awareness
Technical Skills
Strong hands-on experience in application penetration testing and infrastructure penetration testing . Strong knowledge of: Web security testing API security testing Network and server exploitation fundamentals Active Directory attack techniques Windows and Linux internals Authentication, identity, and privilege escalation paths Cloud security fundamentals Strong hands-on experience with tools such as: Burp Suite Nmap Metasploit BloodHound Responder / Impacket Nessus / Qualys Wireshark Custom scripts and offensive security frameworks Strong programming / scripting skills in Python, PowerShell, Bash, JavaScript, or Go . Ability to develop or modify tools, proof-of-concepts, payloads, and automation scripts. Understanding of secure coding concepts and ability to review code snippets for security issues.
#LI-DP1
Full job record
| Job ID | d91ffb5be5bd4b7d0e5b15c96beb0c44781417f2 |
| Org ID | 43ec9248-3be3-4dbc-821a-1aca69eba827 |
| Source ID | 53da7105-3932-4efb-bc7c-e59315084296 |
| Board ID | 53da7105-3932-4efb-bc7c-e59315084296 |
| Provider | oracle_hcm |
| Provider Job Key | 24610 |
| Title | Group Specialist - Penetration Testing (Application & Infrastructure Security) |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | CTIPL - Gurgaon, Gurgaon, Haryana, IN |
| Department | IT Development |
| Team | — |
| Employment Type | full_time |
| Workplace Type | remote |
| Remote Policy | remote |
| Country | United States |
| Region | IN |
| City | Haryana |
| Salary Raw | Description KEY ACCOUNTABILITIES The ideal candidate should bring a balanced background across application security testing and infrastructure penetration testing, combined with the ability to write scripts, build tooling, automate test cases, analyze code/configurations, and integrate AI-enabled security tools into the testing lifecycle. The role requires close collaboration with engineering, infrastructure, cloud, SOC, architecture, and product teams to validate security posture, identify exploitable weaknesses, and drive remediation. Modern testing workflows increasingly include AI-assisted capabilities. For example, PortSwigger documents Burp AI as a way to improve testing efficiency, understand complex technologies, and streamline authentication setup, while still keeping the tester in control. Microsoft also publishes current guidance for both penetration testing in Azure and LLM red teaming, which reflects the growing expectation that offensive security teams can test both traditional systems and AI-enabled systems. Assist BUs in conducting access control reviews of their applications & systems Perform hands-on penetration testing of web applications, APIs, mobile backends, middleware, and custom business applications . Assess applications for vulnerabilities such as: Broken access control / BOLA Authentication and session management flaws Injection vulnerabilities Server-side request forgery (SSRF) Business logic abuse Client-side security weaknesses Insecure deserialization Misconfigurations and secrets exposure Conduct authenticated and unauthenticated assessments across internet-facing and internal applications. Test REST, SOAP, GraphQL, and modern API architectures. Review application architecture, trust boundaries, and data flows to identify realistic attack paths. Validate remediation fixes and perform re-testing. Perform infrastructure penetration testing across: Internal and external networks Active Directory / Windows environments Linux and Unix servers Network devices and segmentation controls VPN, remote access, and identity-connected infrastructure Cloud environments and hybrid infrastructure Assess privilege escalation paths, lateral movement opportunities, credential exposure, trust abuses, and weak administrative controls. Conduct attack path testing across enterprise environments to identify high-risk chaining opportunities. Evaluate resilience of endpoint, network, identity, and server controls against real-world attack techniques. Evaluate and integrate modern AI-enabled testing capabilities into the pentesting workflow, such as: AI-assisted web testing and workflow understanding AI-enhanced reporting/documentation AI-supported attack-path reasoning AI-assisted code and configuration review AI red teaming for LLM- or agent-based applications where relevnt Always act as an ambassador for DP World when working; promoting and demonstrating positive behaviors in harmony with DP World’s Principles, values and culture; ensuring the highest level of safety is applied in all activities; understanding and following DP World’s Code of Conduct and Ethics policies Perform other related duties as assigned QUALIFICATIONS, EXPERIENCE AND SKILLS Knowledge and Experience Bachelor’s degree in computer science or equivalent Should have 10-12 years of experience in application and infra pen testing. Good understanding in E-commerce, logistics, supply chain & port operations applications will be an added advantage Experience in establishing cyber & third-party risk management processes Working knowledge of ISO 27001, COBIT 2019 etc. Experience in working with Multinational Companies (MNC) is preferable Soft Skills Excellent communication & analytical skills Program and Project management skills Time management skills Team player and conflict management skills Coaching / guiding skills Ability to adapt in a complex environment, loves challenges, with the will and drive to learn new things on his/her own Cultural awareness Technical Skills Strong hands-on experience in application penetration testing and infrastructure penetration testing . Strong knowledge of: Web security testing API security testing Network and server exploitation fundamentals Active Directory attack techniques Windows and Linux internals Authentication, identity, and privilege escalation paths Cloud security fundamentals Strong hands-on experience with tools such as: Burp Suite Nmap Metasploit BloodHound Responder / Impacket Nessus / Qualys Wireshark Custom scripts and offensive security frameworks Strong programming / scripting skills in Python, PowerShell, Bash, JavaScript, or Go . Ability to develop or modify tools, proof-of-concepts, payloads, and automation scripts. Understanding of secure coding concepts and ability to review code snippets for security issues. #LI-DP1 |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://ehpv.fa.em2.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX/job/24610 |
| Apply URL | https://ehpv.fa.em2.oraclecloud.com/hcmUI/CandidateExperience/en/sites/CX/job/24610 |
| First Seen At | 2026-06-02 11:57:21Z |
| Last Seen At | 2026-06-06 20:21:47Z |
| Last Checked At | 2026-06-06 20:21:47Z |
| Last Changed At | 2026-06-06 11:28:49Z |
| Inactive At | — |
| Source Posted At | 2026-06-02 08:46:48Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=oracle_hcm/board=ehpv.fa.em2.oraclecloud.com|CX/date=2026-06-06/2026-06-06T20-20-58-266Z-0d85e2458a7b38b7dbac136e0df4a9fffcd8c2fe75ae7f162ddc73a15940f17d.json |
Event Fields
{
"content_hash": "6fca489887f5d20fc914454649c921cc10244cb9ae53bc86a361b31be55eeda1",
"source_hash": "7ece2811a12d0f158ecf5010b5a9ad79cfd423058d9b235ac7845851f2144a4b",
"last_changed_at": "2026-06-06T11:28:49.830Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "CTIPL - Gurgaon, Gurgaon, Haryana, IN",
"city": "Haryana",
"region": "IN",
"country": "United States",
"is_remote": false,
"confidence": 0.9
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T20:21:47.295Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "CTIPL - Gurgaon, Gurgaon, Haryana, IN",
"city": "Haryana",
"region": "IN",
"country": "United States",
"is_remote": false,
"confidence": 0.9
},
"countries": [
"United States"
]
},
"remote_policy": "remote",
"salary_period": null,
"workplace_type": "remote",
"salary_currency": null
}Extensions
{}Native Structured
{
"detail": {
"Id": "24610",
"Title": "Group Specialist - Penetration Testing (Application & Infrastructure Security)",
"media": [],
"skills": [],
"JobType": null,
"Category": "IT Development",
"JobGrade": null,
"JobLevel": null,
"JobShift": null,
"WorkDays": null,
"WorkHours": null,
"WorkYears": null,
"Department": null,
"HotJobFlag": false,
"StudyLevel": "Bachelor's Degree",
"WorkMonths": null,
"WorkerType": null,
"GeographyId": 300000030012559,
"JobFamilyId": 300000021954996,
"JobFunction": "Information Technology",
"JobSchedule": "Full time",
"BusinessUnit": null,
"ContractType": null,
"Organization": null,
"TrendingFlag": true,
"workLocation": [
{
"Country": "IN",
"Region1": null,
"Region2": null,
"Region3": null,
"Building": null,
"Latitude": "12.95736",
"Longitude": "77.64216",
"LocationId": 300000752964314,
"PostalCode": "560071",
"TownOrCity": "Bangalore",
"AddressLine1": "Embassy Golf Links Business Park",
"AddressLine2": "Torrey Pines Building",
"AddressLine3": "4th Floor, Off Intermediate Ring Road",
"AddressLine4": null,
"LocationName": "EGL Bangalore"
}
],
"ContentLocale": "en",
"HiringManager": null,
"LegalEmployer": null,
"RequisitionId": 300005873125908,
"WorkplaceType": "",
"BusinessUnitId": 300000492659075,
"OrganizationId": 1,
"GeographyNodeId": 100024216485087,
"JobFunctionCode": "DPW_INFORMATION_TECH",
"LegalEmployerId": 300000493393759,
"PrimaryLocation": "Bangalore, Karnataka, India",
"RequisitionType": "New Position – Budgeted",
"NumberOfOpenings": null,
"WorkplaceTypeCode": null,
"BeFirstToApplyFlag": false,
"otherWorkLocations": [
{
"Country": "IN",
"Region1": null,
"Region2": "Haryana",
"Region3": null,
"Building": null,
"Latitude": "28.47894",
"Longitude": "77.09193",
"LocationId": 300001175835765,
"PostalCode": "122002",
"TownOrCity": "Gurgaon",
"AddressLine1": "6th Floor, One Horizon Center",
"AddressLine2": "DLF Phase 5, Sector 43,",
"AddressLine3": null,
"AddressLine4": null,
"LocationName": "CTIPL - Gurgaon",
"RequisitionWorkLocationId": 300005873231578
}
],
"secondaryLocations": [],
"ExternalContactName": null,
"ShortDescriptionStr": "To provide oversight and accountability of Penetration Tester Specialist – Application & Infrastructure Security. The role will be responsible for performing pen testing of group applications & infrastructure",
"ExternalContactEmail": null,
"ExternalPostedEndDate": null,
"OtherRequisitionTitle": null,
"requisitionFlexFields": [],
"ApplyWhenNotPostedFlag": null,
"DomesticTravelRequired": null,
"ExternalDescriptionStr": "<figure class=\"table\"><table border=\"1\" cellspacing=\"0\" cellpadding=\"0\" width=\"655\" style=\"border-collapse: collapse; border-width: medium; border-style: none; border-color: currentcolor; border-image: initial;\"><tbody><tr><td width=\"655\" valign=\"top\" style=\"background-color: rgb(179, 179, 179); border: 1pt solid windowtext; padding: 0cm 5.4pt; width: 491.4pt;\"><h3 style=\"margin: 6pt 0cm;\"><span style=\"color: black; font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\"><strong>KEY ACCOUNTABILITIES</strong></span></span></h3></td></tr><tr style=\"height: 40pt;\"><td width=\"655\" valign=\"top\" style=\"border: 1pt solid windowtext; height: 40pt; padding: 0cm 5.4pt; width: 491.4pt;\"><p style=\"text-align: justify;\"> </p><ul style=\"list-style-type: disc; padding-left: 29.73px;\"><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">The ideal candidate should bring a balanced background across application security testing and infrastructure penetration testing, combined with the ability to write scripts, build tooling, automate test cases, analyze code/configurations, and integrate AI-enabled security tools into the testing lifecycle. The role requires close collaboration with engineering, infrastructure, cloud, SOC, architecture, and product teams to validate security posture, identify exploitable weaknesses, and drive remediation.</span></span></p></li><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Modern testing workflows increasingly include AI-assisted capabilities. For example, PortSwigger documents Burp AI as a way to improve testing efficiency, understand complex technologies, and streamline authentication setup, while still keeping the tester in control. Microsoft also publishes current guidance for both penetration testing in Azure and LLM red teaming, which reflects the growing expectation that offensive security teams can test both traditional systems and AI-enabled systems.</span></span></p></li><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Assist BUs in conducting access control reviews of their applications & systems</span></span></p></li><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Perform hands-on penetration testing of <strong>web applications, APIs, mobile backends, middleware, and custom business applications</strong>. </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Assess applications for vulnerabilities such as: </span></span></p><ul style=\"list-style-type: circle;\"><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Broken access control / BOLA </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Authentication and session management flaws </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Injection vulnerabilities </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Server-side request forgery (SSRF) </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Business logic abuse </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Client-side security weaknesses </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Insecure deserialization </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Misconfigurations and secrets exposure </span></span></p></li></ul></li><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Conduct authenticated and unauthenticated assessments across internet-facing and internal applications. </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Test REST, SOAP, GraphQL, and modern API architectures. </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Review application architecture, trust boundaries, and data flows to identify realistic attack paths. </span></span></p></li><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Validate remediation fixes and perform re-testing.</span></span></p></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Perform infrastructure penetration testing across: </span></span><ul style=\"list-style-type: circle;\"><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Internal and external networks </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Active Directory / Windows environments </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Linux and Unix servers </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Network devices and segmentation controls </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">VPN, remote access, and identity-connected infrastructure </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Cloud environments and hybrid infrastructure </span></span></li></ul></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Assess privilege escalation paths, lateral movement opportunities, credential exposure, trust abuses, and weak administrative controls. </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Conduct attack path testing across enterprise environments to identify high-risk chaining opportunities. </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Evaluate resilience of endpoint, network, identity, and server controls against real-world attack techniques.</span></span></li></ul><p><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Evaluate and integrate modern AI-enabled testing capabilities into the pentesting workflow, such as:</span></span></p><ul style=\"list-style-type: disc;\"><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">AI-assisted web testing and workflow understanding </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">AI-enhanced reporting/documentation </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">AI-supported attack-path reasoning </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">AI-assisted code and configuration review </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">AI red teaming for LLM- or agent-based applications where relevnt</span></span></li><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Always act as an ambassador for DP World when working; promoting and demonstrating positive behaviors in harmony with DP World’s Principles, values and culture; ensuring the highest level of safety is applied in all activities; understanding and following DP World’s Code of Conduct and Ethics policies</span></span></p></li><li class=\"ortl-align-justify\"><p style=\"margin-bottom: 6pt; margin-right: 0cm; margin-top: 0cm; text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Perform other related duties as assigned </span></span></p></li></ul></td></tr></tbody></table></figure><figure class=\"table\"><table border=\"1\" cellspacing=\"0\" cellpadding=\"0\" width=\"655\" style=\"border-collapse: collapse; border-width: medium; border-style: none; border-color: currentcolor; border-image: initial;\"><tbody><tr style=\"height: 11.7pt;\"><td width=\"655\" valign=\"top\" style=\"background-color: rgb(179, 179, 179); border: 1pt solid windowtext; height: 11.7pt; padding: 0cm 5.4pt; width: 491.4pt;\"><p class=\"Tablehead\" align=\"left\" style=\"margin: 3pt 0cm; text-align: left;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">QUALIFICATIONS, EXPERIENCE AND SKILLS</span></span></p></td></tr><tr style=\"height: 15.75pt;\"><td width=\"655\" valign=\"top\" style=\"border: 1pt solid windowtext; height: 15.75pt; padding: 0cm 5.4pt; width: 491.4pt;\"><p style=\"margin-left: 0cm;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\"><strong>Knowledge and Experience</strong></span></span></p><ul style=\"list-style-type: disc; padding-left: 29.73px;\"><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Bachelor’s degree in computer science or equivalent</span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Should have 10-12 years of experience in application and infra pen testing.</span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Good understanding in E-commerce, logistics, supply chain & port operations applications will be an added advantage</span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Experience in establishing cyber & third-party risk management processes</span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Working knowledge of ISO 27001, COBIT 2019 etc.</span></span></p></li><li class=\"ortl-align-justify\"><p style=\"text-align: justify;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Experience in working with Multinational Companies (MNC) is preferable</span></span></p></li></ul><p style=\"margin-left: 0cm;\"> </p><p style=\"margin-left: 0cm;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\"><strong>Soft Skills</strong></span></span></p><ul style=\"list-style-type: disc; padding-left: 24px;\"><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Excellent communication & analytical skills</span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Program and Project management skills</span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Time management skills</span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Team player and conflict management skills</span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Coaching / guiding skills</span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Ability to adapt in a complex environment, loves challenges, with the will and drive to learn new things on his/her own</span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\">Cultural awareness</span></span></li></ul><p style=\"margin-left: 0cm;\"> </p><p style=\"margin-left: 0cm;\"><span style=\"font-family: Tahoma, sans-serif;\"><span lang=\"EN-GB\" style=\"font-size: 10pt;\"><strong>Technical Skills</strong></span></span></p><ul style=\"list-style-type: disc; padding-left: 24px;\"><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Strong hands-on experience in <strong>application penetration testing</strong> and <strong>infrastructure penetration testing</strong>. </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Strong knowledge of: </span></span><ul style=\"list-style-type: circle; padding-left: 48px;\"><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Web security testing </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">API security testing </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Network and server exploitation fundamentals </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Active Directory attack techniques </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Windows and Linux internals </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Authentication, identity, and privilege escalation paths </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Cloud security fundamentals </span></span></li></ul></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Strong hands-on experience with tools such as: </span></span><ul style=\"list-style-type: circle; padding-left: 48px;\"><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Burp Suite </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Nmap </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Metasploit </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">BloodHound </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Responder / Impacket </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Nessus / Qualys </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Wireshark </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Custom scripts and offensive security frameworks </span></span></li></ul></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Strong programming / scripting skills in <strong>Python, PowerShell, Bash, JavaScript, or Go</strong>. </span></span></li><li><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Ability to develop or modify tools, proof-of-concepts, payloads, and automation scripts. </span></span></li></ul><p style=\"margin-left: 0cm;\"><span style=\"font-family: Tahoma, sans-serif;\"><span style=\"font-size: 10pt;\">Understanding of secure coding concepts and ability to review code snippets for security issues.</span></span></p><p> </p></td></tr></tbody></table></figure><p>#LI-DP1</p>",
"ObjectVerNumberProfile": null,
"PrimaryLocationCountry": "IN",
"CorporateDescriptionStr": "",
"ExternalPostedStartDate": "2026-06-02T08:46:48+00:00",
"ExternalQualificationsStr": "",
"InternalQualificationsStr": "",
"OrganizationDescriptionStr": "",
"primaryLocationCoordinates": [
{
"Latitude": "12.96618",
"Longitude": "77.5869",
"CountryCode": "IN",
"GeographyId": 300000030012559,
"GeographyNodeId": 100024216485087
}
],
"ExternalResponsibilitiesStr": "",
"InternalResponsibilitiesStr": "",
"InternationalTravelRequired": null
},
"list_job": {
"Id": "24610",
"Title": "Group Specialist - Penetration Testing (Application & Infrastructure Security)",
"JobType": null,
"Distance": 1780358400000,
"JobShift": null,
"Language": "US",
"WorkDays": null,
"JobFamily": null,
"Relevancy": 7,
"WorkHours": null,
"Department": null,
"HotJobFlag": false,
"PostedDate": "2026-06-02",
"StudyLevel": null,
"WorkerType": null,
"GeographyId": 300000030012559,
"JobFunction": null,
"JobSchedule": null,
"BusinessUnit": null,
"ContractType": null,
"ManagerLevel": null,
"Organization": null,
"TrendingFlag": true,
"workLocation": [
{
"Country": "IN",
"Region1": null,
"Region2": null,
"Region3": null,
"Building": null,
"Latitude": 12.95736,
"Longitude": 77.64216,
"LocationId": 300000752964314,
"PostalCode": "560071",
"TownOrCity": "Bangalore",
"AddressLine1": "Embassy Golf Links Business Park",
"AddressLine2": "Torrey Pines Building",
"AddressLine3": "4th Floor, Off Intermediate Ring Road",
"AddressLine4": null,
"LocationName": "EGL Bangalore"
}
],
"LegalEmployer": null,
"MediaThumbURL": null,
"WorkplaceType": "",
"BusinessUnitId": 300000492659075,
"OrganizationId": 1,
"PostingEndDate": null,
"LegalEmployerId": 300000493393759,
"PrimaryLocation": "Bangalore, Karnataka, India",
"WorkDurationYears": null,
"WorkplaceTypeCode": null,
"BeFirstToApplyFlag": false,
"WorkDurationMonths": null,
"otherWorkLocations": [
{
"Country": "IN",
"Region1": null,
"Region2": "Haryana",
"Region3": null,
"Building": null,
"Latitude": 28.47894,
"Longitude": 77.09193,
"LocationId": 300001175835765,
"PostalCode": "122002",
"TownOrCity": "Gurgaon",
"AddressLine1": "6th Floor, One Horizon Center",
"AddressLine2": "DLF Phase 5, Sector 43,",
"AddressLine3": null,
"AddressLine4": null,
"LocationName": "CTIPL - Gurgaon",
"RequisitionWorkLocationId": 300005873231578
}
],
"secondaryLocations": [],
"ShortDescriptionStr": "To provide oversight and accountability of Penetration Tester Specialist – Application & Infrastructure Security. The role will be responsible for performing pen testing of group applications & infrastructure",
"requisitionFlexFields": [],
"DomesticTravelRequired": null,
"PrimaryLocationCountry": "IN",
"ExternalQualificationsStr": null,
"ExternalResponsibilitiesStr": null,
"InternationalTravelRequired": null
},
"detail_meta": {
"url": "https://ehpv.fa.em2.oraclecloud.com/hcmRestApi/resources/latest/recruitingCEJobRequisitionDetails?expand=all&onlyData=true&finder=ById;Id=%2224610%22,siteNumber=CX",
"http_status": 200,
"content_type": "application/json",
"response_bytes": 22104
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/d91ffb5be5bd4b7d0e5b15c96beb0c44781417f2?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/43ec9248-3be3-4dbc-821a-1aca69eba827JSONGET https://api.bluedoor.sh/job-postings/v1/sources/53da7105-3932-4efb-bc7c-e59315084296JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/d91ffb5be5bd4b7d0e5b15c96beb0c44781417f2/eventsJSON