HumanBit Logo

Application Security Consultant | Codersbrain

full-time
Posted on August 7, 2025

Job Description

WebPT P1 - Consultant

Company Overview

Company information not provided.

Job Summary

The WebPT P1 - Consultant will be responsible for conducting automated and manual security testing on applications to identify and exploit vulnerabilities. This role is crucial for ensuring the security of web applications, APIs, and networks, therefore helping the organization meet its cybersecurity goals.

Responsibilities

  • Perform automated testing of running applications and static code using various security tools (SAST, DAST).
  • Conduct manual application penetration tests on web applications, internal applications, APIs, networks, and mobile applications to discover vulnerabilities.
  • Utilize application tools such as AppScan, NetsSparker, Acunetix, Checkmarx, Veracode, BurpSuite, OWASP ZAP, and Kali Linux for security testing.
  • Explain vulnerabilities such as IDOR (Insecure Direct Object References), Second Order SQL Injection, CSRF (Cross-Site Request Forgery), including root cause analysis and remediation strategies.
  • Collaborate with technical and non-technical audiences to report findings and lead remediation discussions effectively.

Qualifications

  • Minimum three (3) years of recent experience working with application security testing tools (e.g., AppScan, NetsSparker, Acunetix).
  • Minimum three (3) years of experience performing manual penetration testing and code reviews on web apps, mobile apps, and APIs.
  • Minimum three (3) years of experience collaborating with various stakeholders in reporting results and leading remediation conversations.
  • Preferred: one (1) year of experience in the development of web applications and/or APIs.
  • Strong ability to identify and work with new tools/technologies to assist client projects as needed.
  • Ethical hacking certifications such as GWAPT, CREST, OSCP, OSWE, or OSWA are preferred, but not mandatory.

Preferred Skills

  • Experience in mobile application testing.
  • Knowledge of web application architecture and business logic analysis.

Experience

  • A minimum of three (3) years of relevant experience in application security testing, with a focus on manual penetration testing and code reviews.

Environment

Typical work setting and conditions not provided.

Salary

Salary information not provided.

Growth Opportunities

Potential career advancement opportunities not provided.

Benefits

Details on offered benefits not provided.

Powered by
HumanBit Logo