Penetration Testing Specialist
Tasks
- Assess mobile application security
- Assess web application security
- Audit JWT implementations
- Audit OAuth 2 0
- Audit OIDC implementations
- Build executive and technical reports
- Conduct application security code reviews
- Design Purple Team exercises
- Execute penetration tests
- Generate security evidence for compliance
- Handle secrets securely
- Manage bug bounty program
- Operate IaC scanning
- Operate appsec toolchain DAST
- Operate appsec toolchain SAST
- Operate appsec toolchain SCA
- Operate secrets scanning
- Perform signed webhook security testing
- Plan penetration tests
- Review authorization flaws
- Review concurrency and race conditions
- Review financial logic bugs
- Review input validation
- Review webhook signatures
- Run bug bashes
- Run business logic vulnerability testing
- Run internal CTFs
- Run threat modeling program
- Secure partner integrations
- Test API security
- Test cloud infrastructure security
- Test internal network security
- Test rate limiting and idempotency
- Track findings to closure
Perks/Benefits
- N/A
Skills/Tech-stack
API Security | API Security Top 10 | Application Security | BFLA | BOLA | CORS | CORS SameSite | CSP | CVSS | Cloud Security | DAST | Deserialization | Frida | Fuzzing | IAC scanning | ISO 27001 | Idempotency | JWT | LINDDUN | MITRE | MITRE ATLAS | Mass Assignment | MobSF | Mobile Application Security | Mobile application | NIST | OAuth 2 | OAuth 2 0 | OIDC | OWASP API | OWASP API Security | OWASP API Security Top 10 | OWASP ASVS | OWASP MASTG | OWASP Top | OWASP Top 10 | OWASP WSTG | Objection | PASTA | PKCE | PTES | Penetration Testing | Prototype Pollution | Race conditions | Rate Limiting | SAST | SCA | SSL Pinning | SSL pinning bypass | SSRF | STRIDE | Secrets Scanning | Signed Webhooks | Template Injection | Threat modeling | Top 10 | Web Application | Web application security
Education
N/A
Related jobs
-
Cybersecurity Engineer EUR 55K-84KActive Directory | Application Security | Disaster Recovery | Documentation | EDRRemote workMid-level Full TimeIreland R3h ago
-
Cybersecurity Engineer EUR 55K-84KAI Security | Active Directory | Device Management | Disaster Recovery | EDRRemote work opportunityMid-level Full TimeIreland R3h ago
-
Cyber Specialist GBP 35K-44KAI machine learning | Access Management | Active Directory | Azure | Cyber EssentialsContributory pension scheme | Cycle to work scheme | Employee assistance programme | Enhanced family leave | Flexible workingMid-level Full TimeVirtual R10h ago
-
SIEM Specialist USD 104K-170KAWS | Azure | Bash | Cloud Security | Correlation rulesCompetitive base | Flexible work model | Growth opportunities | Hybrid work model | In-office work optionMid-level ContractColombia; Argentina; Brazil; Remote (United States) R15h ago
-
Staff Cloud Security Engineer USD 225K-275KAWS | AWS Secrets | AWS Secrets Manager | Admission control | Azure12 Holidays + 2 Floating Holidays | 12 holidays | 401k plan | In-home office setup | Internet stipendSenior-level Full TimeUnited States - Remote Opportunity R16h ago
-
Product Security Engineer 3 INR 1244K-1890KAI Security | API Top 10 | AWS | Authentication & Authorization | AzureMid-level Full TimeBangalore, India R21h ago
-
Application Security Engineer (Remote in the U.S.) USD 85K-141KApplication Security | Azure DevOps | Bamboo | Burp Suite | C SharpCorporate holidays | Flexible time off | Group dental insurance | Group medical insurance | Home internet allowanceMid-level Full TimeRemote R21h ago
-
Application Security | Authentication bypass | Business Logic | Business logic flaws | C#Equity | Remote workMid-level Full TimeUS, Remote R21h ago
-
Associate Application Security Engineer USD 80K-100KAPI Design | Container Scanning | DAST | IPS | Infrastructure as CodeDiversity and inclusion | Remote workMid-level Full TimeUS- Remote R1d ago
-
Product Security Architect USD 139K-209KAPI Security | AWS | Adversarial Testing | Architecture Risk Assessment | Attack Surface AnalysisSenior-level Full TimeRemote United States R1d ago
-
Sr Product Security Engineer USD 135K-191KAI | AWS | Advanced Security | Application Security | AzureSenior-level Full TimeRemote Canada | Remote United States R1d ago
-
Senior Application Security Engineer USD 157K-216KAI Assisted Development | AWS GuardDuty | AWS IAM | AWS KMS | Acceptance criteriaSenior-level Full TimeRemote - United States R1d ago
-
Security Engineer - Pre-sales USD 114K-152KAWS | Access Management | Azure | CIS | Cloud Security401k match | Company-Paid Holidays | Dental insurance | Disability insurance | Education assistanceMid-level Full TimeUS - Remote - Chicago - … R1d ago
-
Senior Security Engineer- USA USD 132K-225KAI code assistants | Application Security | Automation | CI/CD | Cloud infrastructure401k plan | DCA | Disability insurance | Employer paid medical/dental/vision | FSASenior-level Full TimeBoston - Remote R1d ago
-
Senior Security Engineer- Canada CAD 110K-300KAI tools | Application Security | Automated security | Automated security testing | CI/CDCo-working space | Dental insurance | HSA | Health insurance | Life insuranceSenior-level Full TimeToronto - Remote R1d ago
-
Senior Security Engineer - Canada CAD 160K-250KApplication Security | Application Security Testing | Automation | CI/CD | Cloud infrastructureCo-working access | Dental insurance | Health insurance | Health spending account | Life insuranceSenior-level Full TimeMontréal - Remote R1d ago
-
Senior Security Engineer- UK GBP 60K-85KAI Coding Assistants | AI coding | Application Security | CI/CD | Cloud infrastructureCo-working space access | Health insurance | Parental leave | Smart Pension contributions | Travel stipendSenior-level Full TimeLondon - Remote R1d ago
-
Senior Security Engineer- Spain EUR 54K-72KAI tools | Application Security | Automation | CI/CD | Cloud infrastructureAccident Coverage | Co-working access | Generous parental leave | Gym membership allowance | Home-office allowanceSenior-level Full TimeMadrid - Remote R1d ago
-
Senior Security Engineer- USA USD 110K-300KApplication Security | Automation | CI/CD | Cloud infrastructure | Code Scanning401k plan | Co-working space access | Disability insurance | Employer paid medical/dental/vision | Health reimbursement accountSenior-level Full TimeNew York - Remote R1d ago
-
Data Privacy SME USD 100K-145KCompliance reporting | Data Governance | Data Privacy | Data Privacy Policy | Data SharingHybrid scheduleMid-level Full TimeWashington DC Metro Area R1d ago
-
Principal Product Security Researcher CAD 155K-190KAWS | Admission controllers | CI/CD | CNAPP | CSPMCoworking stipend | Destination summits | Flexible time off | Health insurance coverage | Paid parental leaveSenior-level Full TimeCanada - Remote R1d ago
-
Cybersecurity Analysts USD 100K-145K800-53 | ACAS | AWS | AppDetective | CNSSI 1253Direct full time W2 employment | Hybrid schedule | US Secret security clearance supportMid-level Full TimeWashington DC Metro Area R1d ago
-
Access Governance | Access Management | Active Directory | Authentication | Azure AD401k matching | Comprehensive benefits package | Disability insurance | Health insurance | Life insuranceSenior-level Full TimeLos Angeles, CA, United States R1d ago
-
Cyber Security | Docker | Linux | Mitre Attack | NetworkingAnnual leave | Birthday off | Critical illness cover | Cycle scheme | Enhanced parental leaveSenior-level Full TimeUnited Kingdom R1d ago
-
Principal Security Engineer - InfoSec GRC USD 140K-273K800-53 | AWS | Access Management | Architecture Review | Audit managementEmployee stock purchase plan | Generous time off | Healthcare insurance | Parental leave | Remote work optionsSenior-level Full TimeUnited States R1d ago