Penetration Tester

Job Title: Senior Penetration Tester / Red Team Specialist

Location: Gurugram, Haryana (Onsite)

Duration: Long-Term Contract

Company Overview:

• Fluidech is a technology consulting and managed services firm focussed on cybersecurity.
• Founded in 2014 and headquartered in Gurugram—and today with a client base spanning over 100 organisations worldwide—Fluidech designs IT solutions aligned with business objectives, fostering trusted relationships and delivering measurable performance improvements.
• Established as a born-in-the-cloud company, Fluidech has evolved into a trusted technology partner that helps businesses build (Cloud & Infrastructure), automate (DevOps), and secure (Cyber Security services). Our solutions span diverse industry verticals, aligned with each client’s business goals.
• In addition to holding ISO 9001 and ISO 27001 certifications and an award-winning cybersecurity team, the company has a strong value proposition in its GRC services across frameworks, including but not limited to NCIIPC’s CAF, SEBI’s CSCRF, and others.

Position Overview

• We are seeking an experienced Senior Penetration Tester / Red Teamer to lead advanced offensive security assessments and adversary simulation exercises. The ideal candidate has deep hands-on expertise in exploiting complex environments, emulating real-world threat actors, and helping organisations improve their security posture through actionable insights.

Key Responsibilities:

• Lead and execute advanced penetration tests (network, web, mobile, cloud, and infrastructure)
• Conduct Red Team operations simulating real-world threat actors (APT-style attacks)
• Perform external, internal, and wireless security assessments
• Develop and customise exploits, payloads, and tools
• Conduct cloud security assessments (AWS, Azure, GCP)
• Work with junior penetration testers and review their assignments for quality improvement
• Bypass security controls such as EDR, AV, MFA, and SIEM detections
• Provide clear, actionable reports with risk-based findings and remediation guidance

Required Skills & Qualifications:

• Expert-level knowledge of penetration testing methodologies and frameworks (MITRE ATT&CK, NIST, PTES)
• Over 05+ years of experience with tools such as: Metasploit, Burp Suite, Nessus, Nmap, etc.
• Strong scripting and development skills: Python, PowerShell, Bash (Ruby/C preferred)

Deep understanding of: Windows & Linux internals, Networking (TCP/IP, DNS, HTTP/S), Active Directory security

• Ability to evade modern security defences (EDR/AV/MFA)
• Excellent written and verbal communication
• Strong analytical and problem-solving skills

Certifications (Preferred):

• OSCP / OSEP / OSCE / OSED, CEH (Advanced), CISSP (Offensive focus)

Nice to Have:

• Bug bounty or CTF participation
• Open-source security contributions
• Experience with physical security testing