HumanBit Logo

WebPTP1 - Consultant | Codersbrain

full-time
Posted on August 8, 2025

Job Description

WebPT P1 - Consultant

Company Overview

Company details are not specified.

Job Summary

We are seeking a skilled and driven Application Security Consultant to join our team as part of the WebPT P1 Project. The ideal candidate will have a strong foundation in both automated and manual security testing of applications, APIs, and infrastructure. This role is essential in strengthening our security posture and ensuring the safety and integrity of our applications.

Responsibilities

  • Conduct automated testing using tools like Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST).
  • Perform manual penetration testing on:
    • Web applications
    • Internal applications
    • Mobile applications
    • APIs
    • Internal and external networks
  • Work with security testing tools such as:
    • AppScan, Netsparker, Acunetix
    • Checkmarx, Veracode
    • BurpSuite, OWASP ZAP, Kali Linux
  • Analyze and explain vulnerabilities such as:
    • Insecure Direct Object References (IDOR)
    • Second Order SQL Injection
    • Cross-Site Request Forgery (CSRF)
  • Understand root causes of vulnerabilities and suggest remediation strategies.
  • Collaborate with development and security teams to communicate findings and lead remediation efforts.

Qualifications

  • Minimum 3 years of hands-on experience in application security testing using tools like AppScan, Checkmarx, BurpSuite, etc.
  • At least 3 years of performing manual penetration testing and secure code reviews for web/mobile applications and APIs.
  • Strong communication skills to engage both technical and non-technical stakeholders.
  • Ability to quickly adapt to new tools and environments based on client requirements.

Preferred Qualifications

  • Bonus: 1+ year experience in web/API development.
  • Certifications (not mandatory but preferred):
    • Offensive Security Certified Professional (OSCP)
    • Offensive Security Web Expert (OSWE)
    • Offensive Security Web Associate (OSWA)
    • GIAC Web Application Penetration Tester (GWAPT)
    • CREST certifications

Experience

4 to 8 years in application security, including both automated and manual testing.

Environment

  • Location: Bangalore / Pune (Hybrid – 3 days in-office per week)
  • Shift: General
  • Working Days: 5 Days a Week

Salary

  • Up to ₹26 LPA

Growth Opportunities

Opportunities for career advancement within the company are not specified.

Benefits

Benefits offered are not specified.

Powered by
HumanBit Logo