Web Application Penetration Tester – Burp Suite Pro, OWASP Top 10

Role Overview

• Conduct web application penetration testing
• Identify and exploit vulnerabilities in web applications
• Conduct API security testing and assess business logic security
• Generate technical reports with risk rankings and remediation recommendations

Requirements

• Proven experience in web application penetration testing in enterprise environments
• Strong working knowledge of OWASP Top 10 Web Application Security Risks
• Experience performing manual and automated vulnerability testing and exploitation
• Hands-on experience testing authentication, authorization, and session management controls
• Experience identifying and exploiting vulnerabilities such as: SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), Path Traversal, XML/XPath Injection
• Experience conducting API security testing (REST/SOAP services)
• Ability to perform business logic security testing
• Experience generating risk-ranked technical reports with remediation recommendations
• Preferred Experience with Salesforce, MuleSoft, and Okta security testing
• Experience with business logic exploitation testing
• Familiarity with OSSTM methodology
• Experience working with State/Government agencies
• Strong documentation and reporting skills

Tech Stack

• SOAP
• SQL

Benefits

• Must Provide 3 References