At Sectigo, we align around our mission and pride ourselves in helping thousands of customers sleep better at night.

Sectigo is the most innovative provider of certificate lifecycle management (CLM), delivering comprehensive solutions that secure human and machine identities for the world’s largest brands. Sectigo’s automated, cloud-native CLM platform issues and manages digital certificates across all certificate authorities (CAs) to simplify and improve security protocols within the enterprise. Sectigo is one of the largest, longest-standing, and most reputable CAs with more than 700,000 customers and two decades of delivering unparalleled digital trust.

“When people think Online trust management, they think Sectigo because we offer our customers unparalleled peace of mind.”

How we show up with each other and our customers every day is just as important, and we win as #OneSectigo by living out our core values - Support, Excellence, Communication, Teamwork, Integrity, Growth and Openness. We are committed to investing in our diverse teams where everyone understands their role and how they support our strategic goals, we drive operational excellence through scale and efficiency, and we strive to delight our customers and become the market leader in our industry. If you aspire to join a driven team that holds each other accountable to meeting our lofty goals and you’d like to be part of our growth story in delivering a market leading user experience, we’d like to talk to you.

We are a security-focused organization committed to protecting customers, systems, and data through proactive risk identification and continuous improvement. We value integrity, collaboration, technical excellence, and accountability, and we foster an environment where security professionals can grow, innovate, and make a measurable impact.

The Senior Penetration Tester is responsible for assessing the security of applications, platforms, and environments through advanced penetration testing techniques. This role requires OSCP certification and extensive hands-on experience identifying, exploiting, and documenting vulnerabilities across web, network, and cloud systems. The Senior Penetration Tester works closely with engineering and infrastructure teams to remediate findings and strengthen overall security posture.

After-hours or weekend work may be required for critical testing activities, and participation in incident response efforts is expected.

This is a 12-month contract position, ideally working in a hybrid model and reporting to our Chennai office at DLF IT Park, Manapakkam at least 3-4 days a week.

Here are the core functions, responsibilities, and expectations for this role: 

• Perform penetration testing on web applications, APIs, mobile applications, networks, and cloud environments.
• Identify, exploit, and validate vulnerabilities to demonstrate business risk and potential impact.
• Conduct security assessments of platforms and environments, including architecture and configuration reviews.
• Develop clear, detailed reports documenting findings, risk ratings, and actionable remediation recommendations.
• Collaborate with engineering and development teams to validate remediation efforts and improve security controls.
• Support incident response activities, including forensic analysis and threat validation.
• Stay current with emerging threats, tools, and penetration testing techniques.
• Participate in after-hours or weekend testing as required for critical engagements or incidents.
• Maintain alignment with applicable industry standards and regulatory requirements.
• Additional tasks associated with this position may be assigned in response to company initiatives and business needs.

Requirements:

• OSCP certification is required.
• 5+ years of experience in penetration testing and security assessments.
• Strong expertise in web application, network, and cloud penetration testing.
• Proficiency with tools such as Burp Suite, Metasploit, Nmap, and other industry-standard frameworks.
• Solid understanding of OWASP Top 10, MITRE ATT&CK, and common exploitation techniques.
• Proven ability to write detailed technical reports and communicate findings to both technical and non-technical audiences.
• Experience with scripting and automation using Python, Bash, and/or PowerShell.
• Ability to operate effectively in a fast-paced environment and support after-hours or weekend work as needed.

Desired Qualifications:

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Additional certifications such as OSCE, GPEN, or CEH.
• Experience with reverse engineering and malware analysis.

All your information will be kept confidential according to EEO guidelines.

Global team. Global reach. Global impact.

At Sectigo, we believe doing good is good business. Our strength and our success come from our team of passionate, engaged individuals who make a difference, both locally and globally. Our commitment to engagement is rooted in an unconditionally inclusive workforce, embodying our unique perspectives, heritages, and backgrounds, all as diverse as the experiences of each Sectigo employee. Importantly, we strive to be recognized not only as the CLM leader but also for our intentional efforts to promote employees into the roles that most challenge and excite them, into experiences that allow them to grow their interests as we grow the business. We are committed to bringing a little bit of fun and a whole lot of happiness into everything we do so that our work – and our team members – reflect the positive outcomes we deliver to our customers every day.