Senior Web Application Penetration Tester
Appspace, Inc.
About Appspace At Appspace, we're passionate about creating better work experiences for people everywhere, and we're looking for people that feel the same way. Our global office locations and flexible work culture help you work wherever and however you're at your best. Plus, we take the time to help you enjoy your work, build lasting connections, and grow your role. Join the Appspace team and be a part of a culture that's helping people everywhere love where they work. Your Role As a Senior Web App Penetration Tester The Senior Web App Penetration Tester is responsible for internal penetration testing activities, supporting the application development team to resolve security vulnerabilities, resolving OWASP Top 10 vulnerabilities and working with cross-functional teams to implement secure SDLC best practices. A Day in the Life of a Senior Penetration Tester:
- Perform penetration testing activities on Web Applications, Cloud Environments and Mobile Applications using black-box testing tools, in-depth penetration test (using shell scripts and manual testing) techniques, DAST & SAST tools. The candidate should be familiar with black box, gray box and white box testing techniques along with red teaming skills
- Understand the application architectural components, business purpose of the application and code at high level. The resource will be responsible for assisting in architecting secure coding practices.
- Researching and learning about information security trends, new penetration testing techniques, and best practices, and share findings with the team
- Experience with manual and automated techniques for penetration testing (network equipment, servers, web applications, APIs, wireless, mobile, databases, and other information systems), as well as executing vulnerability assessments (injection, privilege escalation, fuzzing, buffer overflows, etc.)
- Demonstrates a consistent track record of testing web applications for common web application security vulnerabilities as defined by OWASP, including input validation vulnerabilities, broken access controls, session management vulnerabilities, cross-site scripting issues, SQL injection and web server configuration issues
- Programming – Python, Perl, Java, Shell Scripting (beneficial)
- Tools – Proxies, Port Scanners, Vulnerability Scanners, Exploit Frameworks (ex: Burp, Nessus, Nmap, Metasploit)
- Providing feedback and guidance to the development teams on best practices to resolve security vulnerabilities and provide input on mitigation strategies.
- 12+ years of experience in Application Penetration Testing & Security Engineering responsibilities
- 4-years College Degree
- OSCP, OSWE, GPEN or GXPN certified or ability to secure certification within six months of hire.
- Proficiency with Application Security best practices
- Experience working with any markup languages and shell scripts
- Perform Penetration Testing and Red Team techniques to discover and exploit vulnerabilities.
- Perform automated and manual hands-on penetration security testing, identifying security risks within applications, security controls, and infrastructure.
- Proven knowledge of OWASP Top 10 & SANS Top 20
- Ability to demonstrate deconstructing the Cyber Kill Chain
- Proven capabilities investigating IDS/IPS to identify malicious traffic
- Experienced with using Syslog events and other security tools to build an end-to-end analysis of events and threats.
- Log correlation to determine security events and manage alerts
- Proven knowledge of application security methodologies, policies, standards and best practices
- Ability to explain and articulate technical concepts using both technical and non-technical language
- Strong oral and written communication skills
- Plan, execute, and report on all testing activities and outcomes
- 20 Days PTO
- Flexible work schedules
- Remote work opportunities
- Paid company holidays
- Appspace Quiet Fridays (No non-essential internal meetings scheduled)
- A casual dress work environment
Vacancy posted 17 days ago
Similar jobs that could be interesting for youBased on the Senior Web Application Penetration Tester in Kuala Lumpur vacancy
- ...looking for a skilled and experienced Penetration Tester to join our team of security consultants... ...assessing the security posture of our client’s applications, infrastructure, APIs, servers and... ...across various platforms (including web applications, thick client applications...
- ...security assessment activities targeting network infrastructure, web applications, mobile platforms, and cloud environments. -Conduct... ...consultants, fostering the development of technical skills in penetration testing methodologies, application security, and report...
- ...apply now. We are currently seeking a Test Manager - Application Security & Penetration testing to join our team in Kuala Lumpur, Wilayah Persekutuan... ...Responsibilities: Conduct penetration testing for web, mobile, and API applications. Perform secure code...
- ...Responsibilities: Engage with external vendors to conduct penetration tests, including: Internal Penetration Testing External... ...Penetration Testing Intelligence-led Penetration Testing Mobile Application Penetration Testing Network Segmentation Penetration...
- ...Responsibilities Frontend Web Development... ...Design, develop, and maintain responsive web applications using: React... ...Advanced Seniority Senior...
- ...Responsibilities Develop and maintain modern web applications and user interfaces Build reusable components and scalable frontend architecture Collaborate with backend, product, and design teams Optimize performance, usability, and cross-browser compatibility...
- Responsibilities: Need help improving our construction web portal (freelance) Requirements: Requires someone with intermediate level web designer skill
- ..., content, and growth execution, all built on measurable ROI. As we scale our digital capabilities, we’re looking for a well-rounded Web Developer and Designer who can build, optimize, and support high-performing websites that actually drive results. This role is ideal...
- ...Role- MY| Automation Tester Description: Automation Testers with minimum of 6+ years’ experience KEY RESPONSIBILITIES Identify issues in requirements design specifications application architecture and product documentation Develop test specifications based...
- ...Responsibilities Full Stack Application Development... ...Design, develop, and maintain full stack web applications for internal business and corporate... ...stakeholders. As a senior resource, provide technical guidance and...
- ...Job Summary Supports the development and configuration of applications by understanding the requirements of customers and recommending application performance improvements, to ensure alignment with business requirements. Job Accountabilities - Key Accountabilities...
MYR 60,000 per year
...The Role : As an Automation Tester, you will be responsible for ensuring the quality and reliability of our software products through... .... Identify issues in requirements design specifications application architecture and product documentation Develop test...- ...Join EPAM Malaysia as a Senior Application Support Engineer . Bridging support and software engineering, you will focus on deep technical troubleshooting, root-cause analysis and issue resolution. Work closely with cross-functional teams to investigate system behavior...
MYR 162,000 - 198,000 per month
...exceptional services to its clients and fostering a culture of excellence. Job Description ~Conduct penetration testing to identify security vulnerabilities in systems, applications, and networks. ~Prepare detailed reports on findings and provide actionable recommendations...- ...service offerings. Your key responsibilities As a Senior within our Tax Technology Team in EY Malaysia office, primarily... ...Must have working experience using a technology application/tool in preparing Malaysia corporate tax computations Experience...
- ...growth opportunities; look no further and join us today! Senior Software Engineer – Web Technologies Responsibilities: Perform requirement gathering, system analysis and design; and application development & integration Perform software quality...
- ...incident, problem, and knowledge management processes for the applications in scope. • Where required, coordinate with 3rd party product vendors... ...to have: Application Servers: Oracle Weblogic, JBoss Web Server: Apache Shell Scripting PL/SQL with experience in...
MYR 108,000 - 132,000 per year
...~Collaborate with developers and stakeholders to understand application requirements and functionalities. ~Identify, document, and track... .... The Successful Applicant A successful Automation Tester (Selenium & Playwright) should have: ~Proficiency in using Selenium...- We’re hiring a Web Developer with strong technical skills and hands-on experience in building responsive, high-performing websites. You’ll work closely with our marketing teams to create functional, user-friendly web solutions that align with business goals. Bonus if you...
- ...join us today! Responsibilities: Perform eCommerce web software project planning, design and tracking Perform conceptualization... ...Models Minimum 5 years’ working experience on Enterprise Application Development under Microsoft / Java Platform Familiar with...
- ...breakdown ISO documentation & reports On-job training will be provided Requirements ~2-3 years working in Medical Lab or Application Support ~ Degree in Biomedical Sciences/ Biochemisty/ Biotech or relevant field ~ Good communication, presentation/...
- ...Responsibilities Full Stack Web Development Develop, enhance, and maintain web applications for internal corporate tooling.... ...Advanced Seniority Regular...
- ...About the role We are looking for an experienced Mobile Application Developer to join our product development team. If you are an experienced... ...in JavaScript, CSS, and HTML. Knowledge of backend web services technology such API & JSON. Possesses strong analytical...
- ...databases are running efficiently incorporating event monitoring for space, fault and general resource management. ~Ensure non Oracle Applications Environments are running efficiently. This involves a mixture of database version's from 10g to 12g on a variety of Operating...
- - Develop and execute manual test cases to ensure the quality and functionality of our software products. - Utilize mathematical principles to design and execute complex test scenarios, including statistical testing and data analysis. - Develop and maintain automated test...
- ...institution. To learn more, visit us at . Job Description MUFG Investor Services IT team is looking for a talented Application Support Analyst who will be responsible for supporting banking applications such as Flexcube, SWIFT, our MUFG Automated Payment System...
- ...large and complex data sets. We’re looking for software engineers to help realise our next generation of scientific processing applications, excited by the prospect of learning new domain knowledge, tools and techniques, and eager to extend these into innovative ideas...
- ...We are looking for a creative and performance-driven Web Designer (SEO & AEO Specialist) to design, optimize, and maintain high-performing websites that deliver exceptional user experience and strong search visibility. This role combines web design expertise with Search...
- ...The Applications Engineer will provide customers with support relating to product development, product qualification, cost down product solutions, failure analysis and processing/presentation of corrective actions. The Applications Engineer will offer our internal team...
- ...Job Responsibilities: Service Monitoring Alerting and Reporting Tool (SMART) is a web dashboard developed in-house using Django /Python framework and with a responsive UI design. This tool focuses on process automation, collate, and visualize alerts across various data...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Web Application Penetration Tester. Be the first to apply!
