Application Security Tester

Application Security Tester
6 month contract - CTH
Location: New Jersey- hybrid

• Application Testing against applications and APIs.
• Perform manual penetration testing and threat hunting against applications.
• Provide the vulnerability information in the predefined report format after performing the testing using manual methodology and tools
• Generate reports on assessment findings and summarizes to facilitate remediation, document technical issues identified during security assessments
• Be a subject matter expert and respond to any security engineering questions/ requests related to Application Defense enhancements
• Collaborate with Security Architects, Product Manager, Risk Managers, and other teams to deliver high quality product.

Talents needed for Success:

• Minimum of 6 years of related experience
• 5+ years of application security testing experience
• Preferred knowledge and/or experience of Red Teaming
• Experience in manually testing applications (non-automated)
• Experience in application security.
  
• Red teaming and manual security testing
• Bachelor s Degree and/or equivalent experience

Talents needed for Success:

• Minimum of 6 years of experience in application testing
• Minimum of 4 years of experience in App PenTest tools such as Burp Suite, Owasp Zap
• Ability to explain vulnerabilities and weaknesses in OWASP Top 10 and SANS Top 25 to any audience and discuss effective defensive techniques
• Understanding of MITRE Framework and adversarial methodologies
• Ability to work under pressure, multitask and be flexible
• Certified in OSCP or GWAPT or related offensive security/red teaming certification