Application Penetration Tester

About the Role: We are seeking an experienced Application Penetration Tester with a strong background in cybersecurity and application security to join our dynamic security team. In this role, you will be responsible for identifying and addressing vulnerabilities in web, mobile , and cloud-native applications while collaborating with global development teams to ensure continuous security improvements. You will play a crucial role in protecting applications from evolving threats by performing security assessments, code reviews, and threat modeling. Key Responsibilities: Conduct comprehensive security testing of web and mobile applications (iOS and Android), as well as developer workflows. Perform static and dynamic code reviews to detect vulnerabilities using tools like SAST , DAST , and SCA . Execute detailed security assessments for cloud-based architectures and produce comprehensive reports with actionable recommendations. Collaborate with global development teams to ensure secure coding practices and continuous improvement of application security. Engage in threat modeling and adversary emulation to simulate attack scenarios and enhance application defenses. Stay updated on the latest application security threats, vulnerabilities, and mitigation strategies. Required Skills and Experience: Bachelor’s degree in Computer Science, Software Engineering , or equivalent work experience. 3-5 years of hands-on experience in application security testing and code reviews . Proficiency in multiple programming languages (e.g., Java, Python, JavaScript, etc.) for security analysis. Expertise with security testing tools, including Burp Suite , Checkmarx , SAST & DAST tools . Experience with cloud platforms such as AWS , Azure , and knowledge of their security models. Certifications such as GWAPT , OSCP , CEH , or other relevant security certifications. Strong analytical and problem-solving skills with a focus on security impact and risk mitigation. Preferred Qualifications: Hands-on experience with mobile application security (iOS and Android). Experience with CI/CD pipeline security and integrating security tools into developer workflows. Knowledge of adversary emulation frameworks and threat intelligence . Why Join Us: Work with a passionate, global team on cutting-edge security challenges. Opportunities for continuous professional growth, including certifications and training. Flexible working hours and remote options. Competitive salary and benefits package.