Web Application Penetration Tester

Preferences Web application development or source code review experience. Strong knowledge of Windows and Linux operating systems. Working knowledge of containerized applications and container-based security controls and configurations. Possess current professional certification (i.e., GWAPT, OSCP, OSCE, GPEN) Prefer Dallas Location as a first choice, however, can also be Charlotte or Malvern Responsibilities Conduct assessments of web applications, mobile applications, databases, client-side applications and tools, and APIs. Execute manual and automated code analysis to assess the quality and security of source code. Perform pre-assessment research and preparation including reconnaissance, documentation and configuration review, and customer interviews. Develop custom tools and exploits. Analyze security findings, including risk analysis and root cause analysis. Generate comprehensive reports, including detailed findings, exploitation procedures, and mitigations. Develop and deliver walkthrough(s), proof(s) of concept (PoCs), articles, and formal presentations. Execute verification and validation testing for customer mitigations and fixes.