This is a fully remote position, open to applicants in Texas.

• Your main responsibility is to conduct penetration testing on web applications, mobile applications, thick clients, and APIs.

• You will perform source code reviews and whitebox penetration testing to demonstrate the impact of application vulnerabilities.

• Engaging in reverse engineering of mobile and thick client applications is part of your role.

• There are instances where you may connect application vulnerabilities to other domains, including cloud and on-prem AD infrastructure.

• Opportunities for lateral transitions into infrastructure teams are limited and will be determined at the manager's discretion.

• You will create comprehensive reports detailing findings and suggested remediations for significant issues.

• You will gain experience in presenting these findings to both technical and executive audiences.

• Engage in SAST and DAST assessments for enterprise, SaaS, and custom in-house applications.

• Proficiency in utilizing scanners and knowledge of how to validate and eliminate false positives is essential.

• A solid understanding of OWASP related to Web, API, Mobile, and AI/LLM is crucial, but you will be encouraged to extend your knowledge further.

• Strong working knowledge of programming languages, including C, C#, Python, Objective-C, Java, JavaScript, SQL, and frameworks such as AngularJS.

• Familiarity with web services and data exchange formats like XML, JSON, SOAP, REST, and AJAX is necessary.

• Understanding of weaknesses and flaws related to AI/LLM in applications.

• Extensive experience and expertise using an attack proxy (e.g., Burp Suite) is required.

• Ideally, you should have 3 - 5 years of experience in penetration testing and consulting.

• A graduate of a post-secondary college or university degree program is preferred.

• At least two years of experience in information security-related tasks is essential.

• Professional qualifications (one or more) such as OSCP, OSWE, BSCP are required; OSCP or Burp certification is mandatory for our organization.

• An amazing team and a positive working environment.

• Competitive remuneration with pay-for-performance incentives.

• Opportunities for employee growth and development.

• Fully remote position (available in Texas).

• At-Will Employment.

Ethical Hacker

People also viewed