Open Position Open Position

About Us:
AceNet Consulting is a fast-growing global business and technology consulting firm leveraging a consultative approach, deep domain expertise and strong technology capabilities across business transformation, IT strategy & architecture, digital transformation, data engineering & analytics, AI/ML, cloud & infrastructure, enterprise applications and emerging technologies to deliver value to our global clients. AceNet’s marquee clients include Tier-1 and Tier-2 banking & financial services, asset & wealth management, healthcare, consumer retail, eCommerce & logistics, engineering, government & public sectors, consulting and technology firms. With presence across Abu Dhabi UAE, Texas USA and India (Bangalore, Gurgaon & Pune), AceNet brings strong consulting and delivery capabilities across project staffing, managed services, outsourcing and offshoring.

Job Summary:
We are seeking an experienced and detail-oriented Ethical Hacker with experience in identifying, exploiting, and helping remediate security vulnerabilities across systems, networks, and applications. The role involves leading penetration testing activities, assessing security risks, and working closely with cross-functional teams to strengthen the organization’s cybersecurity posture.

Key Responsibilities:
*Perform advanced penetration testing on web applications, mobile applications, networks, APIs, and cloud environments.
*Identify, validate, and document security vulnerabilities, misconfigurations, and weaknesses.
*Conduct comprehensive vulnerability assessments and risk analysis.
*Simulate real-world cyberattacks to evaluate system resilience.
*Prepare detailed penetration testing and security assessment reports with actionable remediation guidance.
*Collaborate with development, IT, and security teams to ensure effective vulnerability remediation.
*Review and validate fixes implemented by engineering teams.
*Mentor junior security testers and provide technical guidance when required.
*Stay current with emerging threats, attack techniques, and security tools.
*Ensure alignment with security standards and frameworks such as ISO 27001, OWASP, PCI-DSS, and NIST.
*Support incident response, root-cause analysis, and post-incident security reviews.

Role Requirements and Qualifications:
*Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
*5–7 years’ hands-on experience in penetration testing and application security across web portals, mobile apps, and APIs with focus on transaction-intensive platforms.
*Proven track record of identifying and remediating critical vulnerabilities in at least 1 Govt/PSU project or equivalent audit.
*Familiarity with e-procurement/financial system fraud patterns (bid manipulation, price tampering).
*Strong skills in session/token security, replay attack testing, API penetration, and fraud simulation.
*Controlled attempts to breach or misuse functional flows, verify enforcement of business rules, access controls, and data validations, and ensure secure, fail-safe handling of errors, concurrency, and integration failures.
*Proven expertise in simulating fraud scenarios to identify how buyers/sellers may attempt to manipulate procurement workflows — e.g., bid rigging, price tampering, replay attacks, fake approvals, or bypassing maker-checker controls.
*Track record of identifying and helping remediate critical vulnerabilities in at least one Government/PSU or equivalent highscale procurement/financial system.
*Strong skills in authentication, session/token security, API penetration, input manipulation, and fraud simulation, with ability to highlight business impact of each exploit (financial loss, unfair deal awards, reputational risk).
*Deep understanding of e-procurement/ marketplace fraud patterns (e.g., forged bids, multi-account collusion,transaction replay, audit trail manipulation).
*Proficient in advanced security tools such as Burp Suite, OWASP ZAP, Kali Linux, Metasploit,combined with custom scripting for attack simulation.

Preferred Certifications:
*CEH (Certified Ethical Hacker)
*OSCP / OSWE
*CREST

Why Join Us:
* Opportunities to work on transformative projects, cutting-edge technology and innovative solutions with leading global firms across industry sectors.
* Continuous investment in employee growth and professional development with a strong focus on up & re-skilling.
* Competitive compensation & benefits, ESOPs and international assignments.
* Supportive environment with healthy work-life balance and a focus on employee well-being.
* Open culture that values diverse perspectives, encourages transparent communication and rewards contributions.

How to Apply:
If you are interested in joining our team and meet the qualifications listed above, please apply and submit your resume highlighting why you are the ideal candidate for this position.