Application Security Pentester

Our Client is looking for a qualified application security Pen tester with recent and relevant working experience as a software security tester. Security testing experience in a Financial environment could be advantageous but not determinant. You'll be responsible for the execution of security tests on a wide variety of internal and external facing applications on varities of environment like production, acceptance, testing & development. You also will assist with the continuous improvement of the processes critical to the success of the team.

Primary responsibility to provide Pentest of API & Web Services on Production environment, create actionable reporting based on findings, application testing, including black-, grey-, White Box Methods. Gradually engaging with Pen testing applications in scope for other suitable environments as well.

What we expect:

B.S. in Computer Science or related technical major (M.S./PhD preferred), or significant job experience. You have a valid (Current) OSCP,OSCE, ECSA, ECSP, Sans, GIAC Certification.

Requirements:

Well Versed with penetration testing experience of both thick and thin applications across diversified platforms.

Experience with OWASP testing Guide/Open Source Security Testing Methodology Manual

Fluent in at least 1 programming/Scripting language.

Expert with common web application penetration testing tools including, but not limited to Burp, Fiddler,OWASP Zap, BeEF, and at least one commercial solution (Web Inspect, Appscan, or similar).

Experience deploying enterprise security testing solutions.

Sufficient knowledge of Threat-Modelling is preferred.

If this role is of interest to you, please get an up to date CV to Viro.