Happiest Minds, the Mindful IT Company, applies agile methodologies to enable digital transformation for enterprises and technology providers by delivering seamless customer experience, business efficiency and actionable insights. We leverage a spectrum of disruptive technologies such as: Big Data Analytics, AI & Cognitive Computing, Internet of Things, Cloud, Security, SDN-NFV, RPA, Blockchain, etc. Positioned as Born Digital . Born Agile , our capabilities spans across product engineering, digital business solutions, infrastructure management and security services. We deliver these services across industry sectors such as retail, consumer packaged goods, edutech, e-commerce, banking, insurance, hi-tech, engineering R&D, manufacturing, automotive and travel/transportation/hospitality.
Headquartered in Bangalore, India; Happiest Minds has operations in USA, UK, The Netherlands, Australia and Middle East.
Job Summary:
We are seeking a skilled and detail-oriented Web and Mobile Penetration Tester to join our cybersecurity team. In this role, you will be responsible for identifying security vulnerabilities in web and mobile applications through hands-on penetration testing, risk analysis, and reporting. Your work will help protect our platforms and user data from security threats and ensure compliance with industry best practices.
Key Responsibilities:
- Conduct manual penetration tests on web and mobile applications (iOS & Android).
- Identify and exploit security vulnerabilities to demonstrate real-world risks.
- Review source code, APIs, and business logic for potential weaknesses.
- Develop and present detailed, actionable reports outlining findings and remediation recommendations.
- Work closely with development and DevOps teams to ensure secure coding practices.
- Stay up to date with the latest security threats, vulnerabilities, and technologies.
- Simulate real-world attacks to test incident response and threat detection capabilities.
- Assist with security assessments and audits as required.
Required Skills & Qualifications:
- Proven experience in penetration testing of web and mobile applications.
- Strong understanding of OWASP Top 10 (Web & Mobile).
- Experience with tools such as Burp Suite, OWASP ZAP, MobSF, Frida, etc.
- Familiarity with Android and iOS application internals, including reverse engineering.
- Knowledge of authentication mechanisms, session management, and secure data storage.
- Ability to write clear, concise, and technically accurate reports.
- Good knowledge of secure software development practices.
- Certifications like OSCP, OSWE, GWAPT, GMOB, or equivalent (preferred).
