Web Application Penetration Tester at Hewlett Packard Enterprise

Bengaluru, Karnataka, India

Apply Now

Not SpecifiedCompensation

Mid-level (3 to 4 years), Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Cybersecurity, TechnologyIndustries

Requirements

Deep expertise in identifying and exploiting vulnerabilities across web, application, and cloud environments
Offensive skill set spanning modern web frameworks, authentication mechanisms, and API ecosystems
Expertise in cloud-native architectures in AWS, Azure, and GCP
Experience performing comprehensive security reviews of source code
Experience conducting threat modeling to identify design-level weaknesses early in the SDLC
Stay current with evolving attacker TTPs to perform realistic and high-impact penetration tests
Deep expertise in at least one domain (web/cloud) plus practical experience in two or more of: Web Penetration Testing, Application Penetration Testing, Cloud Penetration Testing (AWS, Azure, GCP), Source Code Security Review, Threat Modeling and SDLC
For Principal level: Strong depth in a primary domain and ability to lead technically across multiple domains
Hands-on experience in planning and executing complex Web and Cloud penetration testing engagements
Dynamic and experienced offensive security expert passionate about applying skills to improve defenses

Responsibilities

Provide advanced offensive cybersecurity expertise, focusing on planning and execution of complex Web and Cloud penetration testing engagements
Own technical planning and delivery of penetration testing engagements—from scoping and test plans through exploitation, PoC development, remediation verification, and formal reporting
Apply deep technical skills and offensive security experience to identify and exploit vulnerabilities in enterprise and cloud environments
Drive high-impact testing projects, develop new testing methodologies and tools, and contribute to the organization’s overall security posture by uncovering and demonstrating real-world attack paths
Perform advanced assessments of web applications, APIs, and authentication mechanisms to identify and exploit vulnerabilities across modern frameworks and architectures
Deliver actionable findings that directly inform defensive improvements
Conduct offensive security assessments in AWS (and implied other cloud environments like Azure and GCP)

Skills

Key technologies and capabilities for this role

Penetration TestingWeb Application SecurityCloud Penetration TestingOffensive SecurityExploitationCybersecurityIncident ResponseTest PlanningScoping

Questions & Answers

Common questions about this position

Is this Web Application Penetration Tester role remote?

Yes, this role has been designated as ‘Remote/Teleworker’, which means you will primarily work from home.

What is the salary or compensation for this position?

This information is not specified in the job description.

What key skills are required for the Web Application Penetration Tester role?

The role requires deep expertise in identifying and exploiting vulnerabilities across web, application, and cloud environments, including modern web frameworks, authentication mechanisms, API ecosystems, cloud-native architectures in AWS, Azure, and GCP, plus experience in source code security reviews and threat modeling.

What is the company culture like at HPE for this role?

HPE's culture thrives on finding new and better ways to accelerate what’s next, values varied backgrounds, offers flexibility to manage work and personal needs, embraces bold moves together, and supports career growth.

What makes a strong candidate for this penetration tester position?

A strong candidate is a dynamic and experienced offensive security expert with hands-on experience in planning and executing complex web and cloud penetration testing, deep technical skills in vulnerability exploitation, and the ability to drive operational effectiveness in a fast-paced cyber environment.

Hewlett Packard Enterprise

Provides enterprise IT solutions and services

About Hewlett Packard Enterprise

Hewlett Packard Enterprise provides enterprise IT solutions with a focus on cloud services, artificial intelligence, and edge computing. Their products include HPE Ezmeral for managing containers, HPE GreenLake for cloud services, and HPE Aruba for networking. These solutions help businesses improve their performance and adapt to digital changes. HPE's business model includes selling hardware, software, and services, as well as offering subscription-based services and long-term contracts. What sets HPE apart from competitors is its commitment to open-source projects and its active developer community, which supports collaboration and innovation. The company's goal is to empower organizations to transform digitally and optimize their operations.

Houston, TexasHeadquarters

1939Year Founded

IPOCompany Stage

Hardware, Enterprise Software, AI & Machine LearningIndustries

10,001+Employees

Risks

Integration challenges with Juniper Networks may delay AI-driven networking benefits.

Competition from startups like Flywheel could impact HPE's AI and cloud services.

HPE's acquisition strategy may strain resources and distract from core operations.

Differentiation

HPE's GreenLake offers a unique hybrid cloud platform for diverse IT environments.

HPE Ezmeral provides advanced container management, enhancing enterprise AI and analytics capabilities.

HPE's Aruba solutions integrate cloud security and networking for seamless, secure connectivity.

Upsides

HPE's acquisition of Juniper Networks boosts AI-driven innovation in networking.

OpsRamp acquisition enhances HPE's IT management with AI-based automation capabilities.

Axis Security integration strengthens HPE's cloud security offerings with SASE solutions.

Land your dream remote job 3x faster with AI

Try Jobo Free