Web Application Penetration Tester – Burp Suite Pro, OWASP Top 10
Zirlen Technologies Inc.,
contract
Posted on:
Location Type: Remote
Location: Vermont • United States
Visit company websiteExplore more
About the role
- Conduct web application penetration testing
- Identify and exploit vulnerabilities in web applications
- Conduct API security testing and assess business logic security
- Generate technical reports with risk rankings and remediation recommendations
Requirements
- Proven experience in web application penetration testing in enterprise environments
- Strong working knowledge of OWASP Top 10 Web Application Security Risks
- Experience performing manual and automated vulnerability testing and exploitation
- Hands-on experience testing authentication, authorization, and session management controls
- Experience identifying and exploiting vulnerabilities such as: SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), Path Traversal, XML/XPath Injection
- Experience conducting API security testing (REST/SOAP services)
- Ability to perform business logic security testing
- Experience generating risk-ranked technical reports with remediation recommendations
- Preferred Experience with Salesforce, MuleSoft, and Okta security testing
- Experience with business logic exploitation testing
- Familiarity with OSSTM methodology
- Experience working with State/Government agencies
- Strong documentation and reporting skills
Benefits
- Must Provide 3 References
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
web application penetration testingAPI security testingvulnerability testingSQL InjectionCross-Site Scripting (XSS)Cross-Site Request Forgery (CSRF)Path TraversalXML/XPath Injectionbusiness logic security testingrisk-ranked technical reports
Soft Skills
documentation skillsreporting skills