Penetration Testing Specialist
Tasks
- Assess mobile application security
- Assess web application security
- Audit JWT implementations
- Audit OAuth 2 0
- Audit OIDC implementations
- Build executive and technical reports
- Conduct application security code reviews
- Design Purple Team exercises
- Execute penetration tests
- Generate security evidence for compliance
- Handle secrets securely
- Manage bug bounty program
- Operate IaC scanning
- Operate appsec toolchain DAST
- Operate appsec toolchain SAST
- Operate appsec toolchain SCA
- Operate secrets scanning
- Perform signed webhook security testing
- Plan penetration tests
- Review authorization flaws
- Review concurrency and race conditions
- Review financial logic bugs
- Review input validation
- Review webhook signatures
- Run bug bashes
- Run business logic vulnerability testing
- Run internal CTFs
- Run threat modeling program
- Secure partner integrations
- Test API security
- Test cloud infrastructure security
- Test internal network security
- Test rate limiting and idempotency
- Track findings to closure
Perks/Benefits
- N/A
Skills/Tech-stack
API Security | API Security Top 10 | Application Security | BFLA | BOLA | CORS | CORS SameSite | CSP | CVSS | Cloud Security | DAST | Deserialization | Frida | Fuzzing | IAC scanning | ISO 27001 | Idempotency | JWT | LINDDUN | MITRE | MITRE ATLAS | Mass Assignment | MobSF | Mobile Application Security | Mobile application | NIST | OAuth 2 | OAuth 2 0 | OIDC | OWASP API | OWASP API Security | OWASP API Security Top 10 | OWASP ASVS | OWASP MASTG | OWASP Top | OWASP Top 10 | OWASP WSTG | Objection | PASTA | PKCE | PTES | Penetration Testing | Prototype Pollution | Race conditions | Rate Limiting | SAST | SCA | SSL Pinning | SSL pinning bypass | SSRF | STRIDE | Secrets Scanning | Signed Webhooks | Template Injection | Threat modeling | Top 10 | Web Application | Web application security
Education
N/A
Related jobs
-
Cybersecurity Engineer Sr. USD 122K-162KAI RMF | Advanced WAF | App Gateway | Azure Key Vault | Azure Landing ZonesSenior-level Full TimeTeletrabajo R4h ago
-
Senior Staff Software Engineer Product Security INR 3000K-4500KAccess Management | Aquasec | Bash | CI/CD | CVE remediationCareer development | Employee resource groups | Flexible WFH | Generous PTO | Paid volunteer timeSenior-level Full TimeIndia-Bangalore-Remote R20h ago
-
Senior GRC Engineer USD 115K-213KAsset Inventory | Audit Readiness | Cloud Security | Compliance | Continuous Control MonitoringRemote-first work environmentSenior-level Full TimeRemote, USA R21h ago
-
Senior Security Engineer, Applications USD 130K-185KAWS | Application Security | Bash | Bug Bounty | Burp Suite401k matching | Employee wellness | Free therapy | Health, dental, vision coverage | Professional development supportSenior-level Full TimeUS - Remote R21h ago
-
Senior Application Security Engineer USD 125K-145KAPI Security | Agile | Agile security | Application Security | AuthenticationCompassionate leave 3 to 5 days | Flexible wellness and learning benefits | Healthcare stipend | Paid Holidays | Paid family leaveSenior-level Full TimeLatam (Remote) R21h ago
-
Senior Product Security Engineer USD 150K-180KAWS IAM | AWS Secrets | AWS Secrets Manager | Application Security | Azure IAM401k | Employee referral bonuses | Flexible time off | Free Lunches | Fun eventsSenior-level Full TimeUnited States R1d ago
-
Senior Cloud Security Engineer (Hybrid/Multi-Cloud) USD 110K-160KAKS | AWS | Ansible | Azure | CI/CDGroup medical insurance | Health savings account | Remote workSenior-level Full TimeFalls Church, VA R1d ago
-
DevSecOps Engineer USD 136K-195KAccess Management | Apigee | CI/CD | Cloud Security | Cloud platform401k matching | Dental insurance | Federal holidays off | Flexible PTO | Health insuranceSenior-level Full TimeRemote R1d ago
-
Security Software Engineer II, Security Operations USD 123K-254KAI | AWS | Access Control | Automation | Cloud SecurityIn office collaboration 1 to 2 times per 6 monthsSenior-level Full TimeChicago, IL, US; Remote, US R1d ago
-
Senior Software Engineer AI/ML SGD 139K-150KAPI Design | CI/CD | Deployment | Docker | GitEquity | Learning stipends | Remote-firstSenior-level Full TimeSingapore R1d ago
-
Staff Security Researcher USD 135K-202KAccess Management | Adversarial techniques | Behavioral analytics | CI/CD | Cloud SecuritySenior-level Full TimeRemote Canada | Remote United States R1d ago
-
AWS | Cloud Security | CrowdStrike | EDR | EKSEmployee stock purchase plan | Equity participation | Flexible spending stipends | Inclusive culture | Medical, dental, and vision coverageSenior-level Full TimeCanada R1d ago
-
Security Engineer - Operations / Incident Response USD 150K-200KAWS | Audit Logs | Automation | Azure | ChronicleSenior-level Full TimeRemote (US) R1d ago
-
Senior Product Security Engineer USD 168K-210KAI Governance | AI Security | CI/CD | Cloud Security | Cloud Security ArchitectureInclusion and belonging | Remote workSenior-level Full TimeRemote, USA R1d ago
-
Senior Product Security Engineer USD 168K-210KAI Act | AI Governance | AI Security | AI security tooling | Application SecurityFlex Fund monthly stipend | Health coverage | Hybrid work | Pension 401k Plan | Time offSenior-level Full TimeRaleigh, North Carolina, USA R1d ago
-
Sr. DevSecOps Engineer I (6583) USD 170K-220K.NET | Application Security | CI/CD | Cloud | Compliance401k match | Dependent care | Flexible work arrangements | Health, dental, and vision insurance | Paid time offSenior-level Full TimeHybrid - Local to D.C. metro … R1d ago
-
CI/CD | Cloud Security | DAST | IAM | ISO 27001Autonomy | Coworking spaces | Direct feedback culture | Flexible working hours | Further educationSenior-level Full TimeGermany - Remote R1d ago
-
Staff Security Engineer - SecOps & Threats USD 231K-265KAWS | Adversary Emulation | Cause analysis | Cloud Security | Continuous Monitoring401k match | Disability insurance | Health insurance | Learning and development | Life insuranceSenior-level Full TimeUnited States, Remote R1d ago
-
Cybersecurity Engineer EUR 52K-84KAWS | Access Control | Application Security | CI/CD | Cloud SecurityFitness classes and wellness activities | Health insurance | Meal vouchers | Mental health platform access | Mobility packageSenior-level Full TimeParis, France R1d ago
-
Senior Security Engineer CAD 121K-157KAWS | Application Security | Architecture Review | Attack Vector | Attack vector analysisFlexible work environment | Generative AI projects | Health benefits | Hybrid work | PTOSenior-level Full TimeCanada R1d ago
-
Senior Product Security Engineer EUR 60K-85KAI Act | AI Governance | AI Security | AI privacy | Agentic AIHealth coverage | Inclusion and belonging | Time offSenior-level Full TimeRemote, Belgium R1d ago
-
Apache Flink | Apache Kafka | Application Security | Architecture | Cloud NativeEmployee stock purchase plan | Equity compensation programs | Flexible paid time off | Fully remote | Growth and development budgetExecutive-level Full TimeItaly R1d ago
-
Compliance | IT Compliance | IT Security | Network Security | Penetration TestingAdditional health insurance | Catering cost coverage | Discretion of candidate data handling | Fitness Studio Membership | Flexible working hoursMid-level Full Time Part TimeÖsterreich - Remote R1d ago
-
Product Security Engineer USD 141K-200K.NET | ARM | Automation | C plus plus | C#Commuter benefits | Dental coverage | Health coverage | Hybrid Onsite | Learning and development stipendMid-level Full TimeRemote Western US R1d ago
-
Corporate Security Engineer BGN 90K-105KAccess Control | Automation Scripting | BYOD | DORA | Data Loss PreventionEmployee referral program | Health insurance | Hybrid work | Paid time off | Pension planSenior-level Full TimeSofia City, Bulgaria R1d ago