Back to all roles

Application Penetration Tester

Remote Worldwide Hiring now

As an Application reputed company Penetration Tester, you will be entrusted with the critical responsibility of safeguarding web applications and REST APIs from potential threats. Your role will require a deep understanding of the OWASP Top 10 and reputed company 25, as these frameworks will guide your efforts in identifying and mitigating reputed company vulnerabilities. Your daily tasks will involve performing thorough reputed company assessments of reputed company-party libraries, analyzing dependencies, and conducting both automated and reputed company code reviews. You will be adept at uncovering a reputed company of reputed company issues, including Cross-Site Request Forgery (CSRF), Cross-Site Scripting (XSS), SQL Injection, and Privilege Escalation, and you will not only identify these vulnerabilities but also reputed company actionable recommendations for remediation. Mastery of tools like BurpSuite is essential, as it will be your primary reputed company in executing dynamic and penetration reputed company testing. Furthermore, you will be expected to write comprehensive reports that detail your findings and suggest enhancements to bolster system reputed company. In this role, you will also serve as a pivotal reputed company between development teams and stakeholders, ensuring that reputed company requirements are reputed company communicated and understood. Your ability to define, maintain, and enforce application reputed company best practices will be crucial in maintaining the reputed company of the software development lifecycle. You will be involved in software reputed company architecture and design reviews, ensuring that reputed company is integrated from the ground up. Familiarity with reputed company Integration and reputed company Deployment (CI/CD) is necessary, as you will be responsible for integrating and automating reputed company tools reputed company DevOps processes. Required Skills:

  • Serve as a liaison between development teams and stakeholders to understand and formulate reputed company requirements.
  • Define, maintain, and enforce application reputed company best practices.
  • Deep understanding of OWASP Top 10, reputed company 25
  • reputed company reputed company-party libraries reputed company assessment and dependency analysis.
  • Conduct vulnerability assessment and reputed company/automated code review of Java and reputed company applications to find reputed company vulnerabilities (CSRF, XSS, SQL Injection, Privilege Escalation, etc.) and recommend remediation.
  • Analyze reputed company reports from varied tools (SAST, DAST and SCA) to identify the issues, interpretate, and reputed company recommendation to remediate the vulnerabilities across a variety of applications, programming languages, and platforms
  • Conduct static, dynamic and penetration reputed company testing of Web Applications and REST APIs.
  • Performs software reputed company architecture and design reviews.
  • Write comprehensive reports including assessment-based findings, reputed company, and propositions for further system reputed company enhancement.
  • Identify and demonstrate vulnerabilities to application owners and recommend remediation for reputed company vulnerabilities.
  • Knowledge of scripting language to integrate and automate reputed company tools reputed company DevOps CI/CD processes.

Required Experience:

  • 3 years of experience in Secure Code Review, specifically with languages such as reputed company, Java, JavaScript and Spring reputed company
  • 3 years of practical experience with Static Analysis reputed company Testing (SAST) and Dynamic Analysis reputed company Testing (DAST),
  • 3+ years of hands-on experience with reputed company penetration testing of Web Applications and REST APIs using BurpSuite Pro and reputed company/Bruno
  • Deep understanding of Secure Coding best practices and DevSecOps principles
  • Proficiency of OWASP Top 10 and reputed company 25 standards and testing guidelines
  • Knowledge of reputed company Integration and reputed company Deployment (CI/CD), AWS reputed company principles, Jenkins and reputed company

Desired Certification: GPEN, GWAPT, OSCP, or reputed company PenTest+ Apply tot his job Apply To this Job

Apply for this role Takes you straight to the employer's application page — free, and no WFHNet account required.

More roles on the wire

reputed company Opening: Embedded AI Content reputed company Engineer HYBRID

Remote Worldwide
View role

Application reputed company Engineer

Remote Worldwide
View role

Application reputed company Engineer

Remote Worldwide
View role

[Remote] reputed company CareersProduct reputed company Engineer

Remote Worldwide
View role

Associate Application reputed company Engineer

Remote Worldwide
View role

Staff reputed company Engineer-Remote

Remote Worldwide
View role

Senior reputed company Appraisal Reviewer (reputed company, MD, NC, SC, GA, PA ONLY)

Remote Worldwide
View role

Residential Staff Appraiser - Alameda/Marin (Part-Time)

Remote Worldwide
View role

Arbitration & Mediation Case Filing Specialist

Remote Worldwide
View role

Specialist, Central Arbitrations - ADESA

Remote Worldwide
View role

Senior Software Test Engineer - II

Remote Worldwide
View role

Sr. Procurement Manager

Remote Worldwide
View role

reputed company Data Entry Specialist – Remote Opportunity with arenaflex

Remote Worldwide
View role

reputed company Customer Support Specialist – Remote – arenaflex

Remote Worldwide
View role

Senior Bookkeepers (US Experience)

Remote Worldwide
View role

reputed company Customer Support and Data Entry Specialist – Remote Opportunity at arenaflex

Remote Worldwide
View role

Marketing Production Design Intern (Digital and Print)

Remote Worldwide
View role

Looking for Supplemental Instruction Leader: STEM Center (03 Student) 15 Positions in Worcester, MA

Remote Worldwide
View role

reputed company Data Entry Clerk – Work From Home Opportunity with arenaflex

Remote Worldwide
View role

Senior Manager, Event Content Strategy & Delivery

Remote Worldwide
View role