Plus
Включить Plus
Назад
Company hidden
12 часов назад

Senior Web Application Penetration Tester (Cybersecurity)

Формат работы
hybrid
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
Malaysia
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior Web Application Penetration Tester (Cybersecurity): Conducting internal penetration testing across web, cloud, and mobile applications with an accent on vulnerability resolution and secure SDLC implementation. Focus on identifying OWASP Top 10 risks, executing red teaming exercises, and providing mitigation strategies to development teams.

Location: Kuala Lumpur, Malaysia (Remote work opportunities available for local team members)

Company

hirify.global is a global company dedicated to creating better work experiences through a flexible work culture.

What you will do

  • Perform black-box, gray-box, and white-box penetration testing on web, cloud, and mobile applications.
  • Utilize DAST, SAST, shell scripts, and manual testing techniques to identify security vulnerabilities.
  • Collaborate with cross-functional teams to implement secure SDLC best practices and architect secure coding practices.
  • Research security trends and new penetration testing techniques to share findings with the internal team.
  • Provide guidance to development teams on resolving OWASP Top 10 vulnerabilities and mitigation strategies.
  • Plan, execute, and report on all testing activities and outcomes.

Requirements

  • 12+ years of experience in Application Penetration Testing and Security Engineering.
  • 4-years College Degree and OSCP, OSWE, GPEN, or GXPN certification (or ability to secure one within six months).
  • Proven knowledge of OWASP Top 10 and SANS Top 20 standards.
  • Proficiency in Python, Perl, Java, or Shell Scripting.
  • Experience with security tools including Burp, Nessus, Nmap, and Metasploit.
  • Ability to deconstruct the Cyber Kill Chain and investigate IDS/IPS to identify malicious traffic.

Culture & Benefits

  • Competitive salary with medical, dental, and vision coverage.
  • Mental health resources and a 14-week maternity leave program.
  • Transport and parking allowance for team members based in Kuala Lumpur.
  • 20 days of PTO and paid company holidays.
  • Flexible work schedules and "Quiet Fridays" (no non-essential internal meetings).
  • Casual dress work environment.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →