Senior Web Application Penetration Tester

Tasks

• Deconstruct the cyber kill chain
• Execute black box gray box and white box testing
• Identify OWASP Top 10 vulnerabilities
• Perform cloud and mobile penetration testing
• Perform vulnerability assessments
• Perform web application penetration testing
• Plan execute and report penetration testing results
• Provide mitigation guidance to developers
• Research security trends and share findings
• Support secure SDLC best practices
• Test APIs and web server configurations
• Use DAST and SAST tools

Perks/Benefits

• 14 week maternity leave
• 20 days PTO
• Casual dress work environment
• Dental coverage
• Flexible work schedules
• Medical coverage
• Mental health resources
• Paid Company Holidays
• Quiet Fridays
• Remote work opportunities
• Transport/parking allowance
• Vision coverage

Skills/Tech-stack

Access Control | Black box testing | Black-box | Box testing | Broken Access Control | Buffer overflow | Burp Suite | Cross-Site Scripting | Cyber Kill Chain | DAST | Exploit frameworks | Fuzzing | Gray box) | Gray-box testing | IDS/IPS | Injection Attacks | Input validation | Java | Kill Chain | Log Correlation | Metasploit | Nessus | Nmap | OWASP Top | OWASP Top 10 | Perl | Port scanning | Privilege escalation | Proxies | Python | Red Teaming | SANS Top 20 | SAST | SQL Injection | Session management | Shell Scripting | Syslog | Top 10 | Vulnerability scanning | White-box | White-box testing