Application Penetration Tester at Kavaliro
Washington, DC
About the Job
Kavaliro is seeking an experienced Application Penetration Tester with a strong background in cybersecurity and application security for our security client. In this role, you'll be responsible for identifying and addressing vulnerabilities in web, mobile, and cloud-native applications, while working with global development teams to ensure continuous security improvements.
Your tasks will include conducting security assessments for cloud-based architectures, performing both static and dynamic code reviews, and using tools like SAST, DAST, and SCA to ensure effective security controls. You will also engage in threat modeling and adversary emulation to further strengthen application defenses.
Key Responsibilities:
Your tasks will include conducting security assessments for cloud-based architectures, performing both static and dynamic code reviews, and using tools like SAST, DAST, and SCA to ensure effective security controls. You will also engage in threat modeling and adversary emulation to further strengthen application defenses.
Key Responsibilities:
- Perform comprehensive security testing of web, mobile (iOS and Android), and developer workflows.
- Conduct source code reviews to identify vulnerabilities.
- Execute security assessments and produce detailed reports for review.
- Collaborate with teams to ensure the continuous security of global applications.
- Bachelor’s degree in Computer Science, Software Engineering, or equivalent experience.
- Professional certifications like GWAPT, OSCP, or CEH.
- 3-5+ years of experience in application security testing and code reviews.
- Proficient in multiple programming languages with strong analytical skills.
- Experience with tools such as Burp Suite, Checkmarx, SAST & DAST tools, and cloud platforms (AWS, Azure).
Salary
$145000 - $155000 per annum