Penetration Tester/ Red Team Ops Job in Colortokens
Penetration Tester/ Red Team Ops
- Bengaluru, Bangalore Urban, Karnataka
- Not Disclosed
- Full-time
Red Team Hacker / Pen Tester (Onsite, Bangalore)
Who We Are ColorTokens
We re on a mission to keep businesses running safe and sound even when cyber attackers try to mess things up. Our next-gen platform, ColorTokens Xshield , stops ransomware and malware from spreading sideways inside companies, so critical stuff stays locked down and working.
We ve got mad skills in spotting and controlling traffic between all kinds of devices and users from your typical laptops to IoT and medical gadgets. That means we can slice and dice security zones to keep bad actors contained. Forrester calls us a Leader in Microsegmentation (Q3 2024), and we help global companies avoid big $$$ downtime.
Our Vibe
We re all about hustling with heart. You ll get to own your projects, work with smart teammates, and solve tough problems that actually protect people from kids in hospitals to entire cities. If you re driven, curious, and ready to make a real impact, you ll fit right in.
The Gig What You ll Do
- Run epic red team ops that mimic real-world hackers trying to break in.
- Hack (ethically!) into networks, apps (web, mobile, APIs), and cloud setups to find weaknesses.
- Build your own scripts and tools to level up your tests and dodge detection.
- Team up with defenders (blue team) to boost how we spot and stop attacks.
- Write clear, no-fluff reports with proof-of-concept hacks and smart fixes.
- Keep your finger on the pulse of the latest threats and hacker tricks.
- Jump into purple teaming and adversary simulations to sharpen our edge.
What We re Looking For
- Bachelor s in Cybersecurity, CS, or you ve got real-world chops that match.
- 6+ years deep in red teaming, pentesting across web, APIs, infrastructure, and cloud.
- Pro with tools like Cobalt Strike, Metasploit, Nessus, Burp Suite, Nmap, and scripting (Python/PowerShell/Bash).
- Solid grasp of MITRE ATT&CK, threat modeling, and adversary emulation.
- Know Windows & Linux inside out, Active Directory, plus cloud platforms (AWS, Azure, GCP).
- Bonus points if you re into social engineering, phishing, or physical security.
- Skilled at writing docs that actually make sense.
- Must-have certifications: OSCP is a must; CRTP, OSCE, OSEP, CRTE, GPEN, GXPN are pluses.
Ready to hack for good and protect the digital world? Hit us up and join the squad!
Qualification : Bachelor's degree in Cybersecurity, Computer Science, or related field (or equivalent experience).
