Senior Penetration Tester

· Good understanding of software development life cycle.

· Excellent knowledge of application security best practices.

· Ability to perform application penetration testing in Blackbox and Greybox approaches.

· Excellent understanding of OWASP TOP 10 and SANS TOP 20.

· Ability to perform infrastructure penetration testing and active directory attacks.

· Strong software design and implementation know-how, familiarity with web protocols, and well-versed in application security and infrastructure security.

· Good understanding of application workflow front-end and back-end.

· Ability to perform application and network vulnerability scans and fine-tune false positives.

· Good understanding of network protocols.

· Flexible to assess different technologies such as PHP, ASP, NodeJS, and Java.

· Experienced with mobile application penetration testing for Android, iOS, and App Gallery applications.

· Good knowledge of thick client application security assessment.

· Excellent technical writing skills.

· Ability to work individually or within a team.

· Adaptability to work in short and long term projects.

· Willing to work onsite.

Desired Candidate Profile

· Applicants for the senior penetration tester position should have a minimum of Bachelor’s degree in Computer Science, Information Security, or other related/relevant technical field.

· Having practical cyber security certifications such as OSCP, eWAPT, eCPPT, GXPN, OSCE is a plus.

· Having Red Team and adversary simulation experience is a plus.

· Engaging in bug bounty programs and security research is a plus.

· Minimum 3 years of penetration testing experience is a must.

Employment Type

Full Time

Company Industry

• IT - Software Services

Department / Functional Area

• IT Software

Keywords

• OSCP
• EWAPT
• ECPPT
• GXPN
• OSCE