BreachLock

Role Description Penetration Tester (Mid-Senior) | Full-Time | Remote (US) As a penetration tester on BreachLock's US Strategic delivery team, you'll execute manual, methodology-driven engagements across web applications, APIs, and internal networks — including assumed breach simulations — for enterprise clients. You'll work directly with delivery leadership, contribute to internal tooling and quality systems, and help raise the bar for the team around you. Key Responsibilities - Execute web application, API and mobile penetration tests with a focus on manual testing beyond automated scanning — business logic, authentication abuse, authorization flaws, and injection chains. - Conduct internal network assessments, external network assessments and assumed breach engagements, including Active Directory enumeration, lateral movement, privilege escalation, and post-exploitation. - Leverage frameworks including MITRE ATT&CK, PTES, and OWASP to structure assessments and findings. - Develop and contribute to internal tooling — automation scripts, reporting utilities, and workflow improvements using Python, Bash, or similar. - Participate in QA review cycles, providing structured feedback on findings, CVSS scoring accuracy, and report quality. - Mentor junior testers through technical guidance and finding review. - Collaborate with delivery leadership on scoping, client kickoff calls, and remediation guidance. Qualifications - 3–5 years of professional penetration testing experience in a delivery or consulting context. - Strong web application and API testing fundamentals — Burp Suite proficiency, OWASP Top 10 and beyond, authentication and session management testing. - Solid internal network assessment skills — AD enumeration, Kerberoasting, NTLM relay, ADCS misconfigurations, assumed breach methodology. - Proficiency in scripting and automation (Python, PowerShell, Bash). - Strong written communication — capable of writing clear, accurate, well-scoped findings independently. - Familiarity with PTaaS delivery models or platform-based reporting workflows is a plus. - US-based and eligible to work without sponsorship. Requirements - Experience with C2 frameworks (Cobalt Strike, Havoc, Sliver, or similar). - Active involvement in cybersecurity communities, research, or bug bounty programs. - Certifications such as OSCP, BSCP, CRTO, GWAPT, GPEN, or equivalent practical credentials. - Experience with SIEM platforms or EDR tools from an adversarial perspective. Benefits - Competitive compensation and performance-based equity opportunities. - Flexible work hours with hybrid remote options. - Opportunity to work with international cybersecurity experts. - Strong career progression in a rapidly expanding early-stage company. - Exposure to cutting-edge research, tools, and techniques in offensive security.

Role Description BreachLock is seeking a highly motivated Mid-Enterprise Account Executive to join our growing sales team in a fully remote capacity. In this role, you will be responsible for driving new business growth within the mid-market segment by identifying opportunities, managing complex sales cycles, and building trusted relationships with prospective clients. You will work closely with security leaders, technical stakeholders, and internal teams to position BreachLock’s offensive security solutions as strategic business value drivers. - Prospecting and generating new mid-enterprise opportunities - Managing the full sales cycle from discovery through close - Building and executing strategic account plans - Conducting consultative, value-based sales engagements with cybersecurity buyers - Collaborating with sales engineering, marketing, and leadership teams to exceed revenue goals Qualifications - Proven track record of success in cybersecurity sales - Experience selling into mid-enterprise accounts with complex buying cycles - Strong background in prospecting, pipeline generation, and closing net-new business - Excellent consultative selling, negotiation, and relationship-building skills - Ability to communicate effectively with both technical and executive-level stakeholders - Self-starter mindset with the ability to thrive in a fast-paced, remote environment - Experience in offensive security, penetration testing, vulnerability management, or related cybersecurity domains is strongly preferred - Bachelor’s degree in Business, Marketing, or related field preferred Company Description BreachLock is a global leader in offensive security, helping organizations proactively reduce cyber risk through Penetration Testing as a Service (PTaaS), Attack Surface Management (ASM), Adversarial Exposure Validation (AEV), and Red Teaming. Our unified platform combines expert-led testing with continuous, automated validation to give organizations real-time visibility into exploitable risks across their environments. Trusted by enterprises worldwide, BreachLock delivers attacker-perspective insights that help security teams prioritize what matters most and stay ahead of evolving threats.

Role Description We're looking for a technically strong Sales Engineer with an offensive security background to join our US sales team. You'll be the trusted technical voice in the sales cycle helping clients scope and design the right penetration testing solution for their environment, and driving technical wins for BreachLock's AEV product. - Partner with the US sales team on enterprise deals, owning the technical side of the sales cycle end-to-end - Advise prospects and clients on scoping penetration tests across web apps, networks, APIs, cloud, and more - Act as a trusted offensive security expert — guiding clients on selecting the right testing methodology, coverage, and frequency for their risk posture - Lead Proof of Value (POV) engagements for BreachLock's AEV product, ensuring a clear technical win - Deliver compelling technical demos, presentations, and responses to RFPs/RFIs - Collaborate with the product and delivery teams to relay client feedback and ensure smooth handoffs post-sale Qualifications - 3–6 years of experience in offensive security, penetration testing, or a technical security consulting role - Prior experience in a Sales Engineer, Solutions Architect, or customer-facing technical role is a strong plus - Hands-on knowledge of pen testing across common domains: web applications, external/internal networks, cloud environments, APIs - Familiarity with exposure management, CTEM, or attack surface validation concepts - Strong communication skills — you can translate complex security concepts for both technical and executive audiences - Relevant certifications (OSCP, CEH, GPEN, or similar) is a big plus - Based in the US; ability to travel for key client meetings or events as needed Benefits - Work with a fast-growing, category-defining security company - Competitive base + commission structure - Remote-first with a collaborative, global team - Direct impact on product direction and customer success

Role Description We are seeking an AI Developer with strong expertise in Generative AI, Large Language Models (LLMs), and prompt engineering to design, build, and optimize intelligent systems. The ideal candidate will have hands-on experience with multi-agent architectures, LLM orchestration, and production-grade AI deployments. Key Responsibilities - Design, develop, and deploy applications powered by LLMs and generative AI models - Engineer, test, and optimize prompts for performance, accuracy, and reliability - Build and manage multi-agent systems for complex task orchestration - Integrate AI models with APIs, databases, and external tools - Implement retrieval-augmented generation (RAG) pipelines - Fine-tune and evaluate models using domain-specific datasets - Monitor model outputs, ensure alignment, and reduce hallucinations - Collaborate with product, data, and engineering teams to deliver AI-driven features Qualifications - Strong programming skills in Python (preferred) or similar languages - Deep understanding of prompt engineering techniques and patterns - Experience working with OpenAI, open-source LLMs, or similar platforms - Familiarity with vector databases and embeddings (e.g., Pinecone, FAISS) - Knowledge of multi-agent architectures and orchestration strategies - Understanding of AI evaluation metrics and model performance tuning Preferred Qualifications - Experience with fine-tuning LLMs or training custom models - Knowledge of cloud platforms (AWS, GCP, Azure) - Exposure to conversational AI, chatbots, or copilots - Understanding of AI safety, guardrails, and governance

Role Description We are seeking an AI Developer with strong expertise in Generative AI, Large Language Models (LLMs), and prompt engineering to design, build, and optimize intelligent systems. The ideal candidate will have hands-on experience with multi-agent architectures, LLM orchestration, and production-grade AI deployments. Qualifications - Strong programming skills in Python (preferred) or similar languages - Deep understanding of prompt engineering techniques and patterns - Experience working with OpenAI, open-source LLMs, or similar platforms - Familiarity with vector databases and embeddings (e.g., Pinecone, FAISS) - Knowledge of multi-agent architectures and orchestration strategies - Understanding of AI evaluation metrics and model performance tuning Requirements - Design, develop, and deploy applications powered by LLMs and generative AI models - Engineer, test, and optimize prompts for performance, accuracy, and reliability - Build and manage multi-agent systems for complex task orchestration - Integrate AI models with APIs, databases, and external tools - Implement retrieval-augmented generation (RAG) pipelines - Fine-tune and evaluate models using domain-specific datasets - Monitor model outputs, ensure alignment, and reduce hallucinations - Collaborate with product, data, and engineering teams to deliver AI-driven features Benefits - Experience with fine-tuning LLMs or training custom models - Knowledge of cloud platforms (AWS, GCP, Azure) - Exposure to conversational AI, chatbots, or copilots - Understanding of AI safety, guardrails, and governance

Role Description We are currently hiring for our Engineering team based out of our Hyderabad Offshore Development Center (ODC). - Thorough knowledge of penetration testing on a variety of systems, such as web applications, networks, mobile apps, IoT devices, and APIs including the services layer segments with REST/SOAP/GraphQL APIs, ESB, Middleware, or other channels to identify and exploit vulnerabilities. - Strong understanding of cloud security for environments such as AWS, Azure, GCP, and others. - Capable of researching and staying updated on current security vulnerabilities in order to create proof-of-concept (PoC) or scripts for automated detection. Proficient in proactively addressing emerging threats through continuous monitoring and research. - Develop and maintain tools, scripts, and methodologies to enhance the efficiency and effectiveness of penetration testing activities. - Develop Python-based applications, tools, and scripts according to specifications. - Collaborate with the team to define project requirements and deliver high-quality solutions. - Write clean, efficient, and maintainable code following best practices. - Debug and troubleshoot issues to ensure the performance and reliability of applications. - Work with databases and data processing frameworks to store and manipulate data effectively. - Stay updated on Python libraries, frameworks, and best practices to continuously improve development processes. Qualifications - Proven experience in penetration testing, ethical hacking, and vulnerability assessment. - In-depth knowledge of common security frameworks, standards, and best practices (NIST, OWASP, etc.). - Strong understanding of network protocols, systems architecture, and web application security. - Thorough knowledge of common software vulnerabilities and standards such as OWASP Top 10, SANS Top 25, etc. - Proficiency in using penetration testing tools and frameworks (Metasploit, Burp Suite, Nmap, Wireshark, etc.). - Experience with scripting and programming languages (Python, Bash, PowerShell, JAVA, etc.). - Excellent written and verbal communication skills, including the ability to convey technical concepts to non-technical stakeholders. - Ability to work independently and collaboratively in a team environment. - Strong analytical and problem-solving skills. - Commitment to continuous learning and professional development. Requirements - Opportunity to join a promising Scale-up with accelerated career growth. - Opportunity to join and grow in a rapidly expanding Cybersecurity industry. - Competitive Compensation. - Relocation Benefits. - Healthcare Insurance Benefits. - Company Car Lease Benefits. Benefits - Opportunity to join and grow in a passionate, rapidly expanding industry. - Competitive compensation. - You will be working alongside international experts. - Strong career prospects in an early-stage startup.

Role Description You will be part of the high performing finance team that is responsible for managing end-to-end accounting processes including Procure-to-Pay (P2P), Record-to-Report (R2R), and Direct and Indirect Tax compliances for the global entities. The key deliverables include: - Manage day-to-day accounting operations including journal entries, reconciliations, and ledger scrutiny - Ensure accurate and timely month-end and year-end close processes as per IFRS and IndAS - Maintain general ledger and ensure compliance with accounting standards - Oversee vendor invoice processing, validations, and payments - Ensure proper accounting and reconciliation of vendor accounts - Manage vendor queries and ensure timely resolution - Prepare financial reports and support audits - Ensure completeness and accuracy of financial statements - Consolidation of Financial Statements - Handle GST compliance, including GST return filings (GSTR-1, GSTR-3B, etc.), Input tax credit reconciliation - Manage TDS compliance, including deduction, deposit, and return filing - Support Income Tax compliance, including Advance tax computation and payments, Coordination for tax assessments and audits - Ensure compliance with statutory regulations and timelines Qualifications - Bachelor of commerce or CA/ICWA-Intermediate - Strong knowledge of accounting principles - Proficiency in MS Excel (advanced functions like Pivot Tables, VLOOKUP/XLOOKUP, data analysis) - Experience working with Tally and ERP systems (e.g., SAP, Oracle, Xero or similar) - Ability to work in a team and demonstrate the strong team player Requirements - Strong communicator with the ability to collaborate, build relationships, and support in achieving broader organizational goals - Good experience and understanding of working in an agile environment - Self-starter, who can take initiative and get things done with minimal guidance - Good attention to detail and ability to meet deadlines

Role Description The Director – Pentesting Solutions will lead and scale the organization’s offensive security and penetration testing practice within a lean and fast-growing cybersecurity company. This role combines technical leadership, client advisory, delivery oversight, team management, and business growth responsibilities. The individual will be responsible for ensuring high-quality execution of penetration testing engagements, developing service capabilities, mentoring consultants, supporting pre-sales activities, and helping establish the company as a trusted cybersecurity partner. The ideal candidate is an experienced offensive security leader who can operate effectively in a startup environment, balance strategic and hands-on responsibilities, and build scalable security assessment practices across diverse client environments. Qualifications - Bachelor’s degree in Computer Science, Information Security, Engineering, or a related technical discipline. - 10+ years of experience in cybersecurity with significant focus on penetration testing and offensive security. - Demonstrated experience leading penetration testing teams or offensive security practices. - Strong hands-on experience performing and reviewing penetration tests across multiple technology domains. - Experience interacting directly with enterprise clients and executive stakeholders. - Prior experience working in fast-paced, lean, or startup-oriented environments preferred. Requirements - Strong understanding of web application, network, cloud, API, mobile, and infrastructure security. - Experience with offensive security tools, frameworks, and methodologies. - Familiarity with secure architecture concepts, common attack vectors, and remediation approaches. - Knowledge of industry frameworks and standards such as OWASP, NIST, PTES, MITRE ATT&CK, and CIS benchmarks. - Understanding of cloud platforms, container security, identity security, and modern enterprise environments. Benefits - Competitive salary and performance-based bonuses. - Comprehensive health, dental, and vision insurance. - Flexible work hours and remote work options. - Professional development and training opportunities. - Supportive and collaborative team environment. Company Description A fast-growing cybersecurity company focused on delivering high-quality offensive security solutions.