Application Security Engineer II

Job Summary

A company is looking for an Application Security Engineer II - Penetration Testing.

Key Responsibilities

• Contribute to the creation of an application penetration testing framework
• Conduct thorough penetration testing on web, mobile, and cloud-based applications to identify security vulnerabilities
• Document and report findings, including detailed descriptions of vulnerabilities and recommended remediation steps

Required Qualifications

• Bachelor's degree in Computer Science or a related field, or equivalent work experience
• Four years of application security experience and/or relevant certifications such as OSCP, OSWA, or GWAPT
• Proficiency using penetration testing tools such as Burp Suite
• Strong knowledge of common application vulnerabilities (e.g., OWASP Top Ten)
• Experience with DAST tooling and familiarity with threat modeling methodologies