Consultant - Pen Testing | On-Site, Bangalore

Security Consultants are resources that have shown the ability to rapidly learn new processes and technologies while taking guidance and mentoring from various resources throughout Optiv. Security Consultants will be expected to heavily contribute to client projects while working to advance their various skill sets within their respective Practice Area. How You'll Make An Impact Assist with day-to-day billable operations within various client projects Performing vulnerability assessments and penetration tests Create and contribute to project reports Provide clients tactical and strategic guidance aimed at helping achieve project goals and mature security postures Develop and communicate client project status Set project expectations Ensure the timely delivery of all consulting work Develop project reports that document client findings or identified issues and report findings to client management Help develop and mature client rapport through onsite and remote communications Assist Managing Consultant in troubleshooting client issues and questions Track and monitor current trends within the Application Security industry Have a thorough understanding and expertise on relevant facets of the Application Security industry and assist team members in answering procedural and technical questions Contribute content to the Optiv blog and present on security related topics (via conferences, webinars) Obtain and evolve technical expertise through formal and informal training and other technical initiatives Acquire and maintain technical certifications and industry recognized credentials. What We're Looking For Bachelor’s Degree in Computer Science, Information Systems or related area of study; or four or more years related experience and/or training; or equivalent combination of education and experience required. Minimum 4-6 years of Information Security experience required (Web, API and Mobile security assessments). (Must have) Ability to convey complex technical security concepts to technical and non-technical audiences including executives Ability to work both independently as well as on teams Ability to describe Secure SDLC best practices, especially to drive remediation of software vulnerabilities Ability to explain open-source security and software supply chain risks Experience working with open source and commercial SAST, DAST, and SCA technologies Deep knowledge of CVE, CWE, CVSS, and common vulnerability classes Good to have foundational knowledge in pentesting Generative AI, LLMs, Model Context Protocol (MCP), and Agentic AI architectures, including common attack vectors such as prompt injection, data leakage, insecure tool/agent interactions, and model supply‑chain risks. Familiarity with AI/ML system architecture and security concepts, including model lifecycle, inference pipelines, API-based integrations, and security considerations unique to LLM-enabled and agentic systems. Hold one or more security certifications: CEH, ECSA, eWPT, eMAPT, eWPTX, etc. Advanced certifications (CISSP, OSCP, OSWE, GWAPT, GPEN) a plus Ability to ensure a time overlap by working for a few hours during US time What you can expect from Optiv A company committed to our inclusive value through our Employee Resource Groups Work/life balance Professional training resources Creative problem-solving and the ability to tackle unique, complex projects Volunteer Opportunities. “Optiv Chips In” encourages employees to volunteer and engage with their teams and communities. The ability and technology necessary to productively work remotely/from home (where applicable) EEO Statement Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status ... (truncated, view full listing at source)