Associate Security Analyst (AppSec)

We are looking for an Associate Security Analyst – Application Security to join our VAPT team. This role is ideal for early-career professionals who have hands-on exposure to web and mobile application security testing and are eager to build deep expertise in AppSec and VAPT engagements. Key Responsibilities: Assist in Application Security Testing and Penetration Testing for web applications, thick clients, and web services. Perform Mobile Applications (Android & iOS) and APIs VAPT under senior guidance. Document vulnerabilities, prepare clear technical reports, and assist customers in the remediation phase. Collaborate with the internal/external team to validate fixes and perform re-testing. Continuously learn emerging attack vectors, OWASP updates, and security best practices. Requirements Requirement: 06 months to less than 1 year of work experience in VAPT Foundational understanding of OWASP Top 10 and common web vulnerabilities (SQL Injection, XSS, IDOR, CSRF, etc.). Hands-on exposure to Burp Suite for web application testing. Familiarity with HTTP/HTTPS, REST APIs, authentication mechanisms, and session management. Strong written and verbal English communication skills for reporting and internal/external discussions. Eagerness to learn and grow in application security and ethical hacking. Preferred Certifications CEH (Certified Ethical Hacker) – Acceptable alternative Benefits Why You'll Enjoy Working at Kratikal: Get the fast learning and exciting environment of a startup, combined with the stable work and strong performance of a bigger company. There's lots of room to learn, grow, and share your ideas. We also provide good benefits like health insurance, a gratuity payment, and Employees' Provident Fund (a savings plan for your future). We are an equal opportunity employer, where everyone has a fair chance. About Us: Kratikal Tech Limited is a leading B2B cybersecurity firm offering cutting-edge cybersecurity solutions and services such as Network Security Audits, Compliance Implementation, IoT Security, and VAPT. Serving over 150+ enterprise customers and 1825+ SMEs across industries, including E-commerce, Fintech, BFSI, NBFC, Telecom, Consumer Internet, Cloud Service Platforms, Manufacturing, and Healthcare, Kratikal is dedicated to helping organizations combat cybercriminals using advanced, technology-driven cybersecurity solutions. The company also develops in-house cybersecurity products, including AutoSecT, competing with industry giants, alongside TSAT (Threatcop Security Awareness Training), TDMARC (Threatcop DMARC), TLMS (Threatcop Learning Management System), and TPIR (Threatcop Phishing Incident Response). These products have received numerous awards and recognitions for their innovation and effectiveness. Kratikal has been honored as the Top Cyber Security Startup at the 12th Top 100 CISO Awards. With a global reach, Kratikal collaborates with renowned organizations to secure their digital landscapes. For more information, visit our websites at www.kratikal.com and www.threatcop.com.