Job Description
Role Overview We are seeking an experienced Application Security Penetration Tester to conduct Vulnerability Assessment and Penetration Testing (VAPT) across web applications, mobile applications, and APIs. This role is responsible for identifying security vulnerabilities through both manual and automated testing, validating remediation efforts, and providing actionable recommendations to strengthen application security. The ideal candidate will have strong technical expertise in penetration testing methodologies, application security, and vulnerability assessment, with the ability to communicate technical findings effectively to development and security teams. Key Responsibilities Perform Vulnerability Assessment and Penetration Testing (VAPT) on web applications, mobile applications, and APIs. Conduct manual and automated penetration testing to identify, validate, and assess security vulnerabilities. Assess applications against the OWASP Top 10, OWASP API Security Top 10, and other industry-recognised security standards. Identify common web application vulnerabilities, including authentication, authorization, session management, input validation, and API security weaknesses. Validate vulnerability findings, eliminate false positives, and assess business impact and risk exposure. Perform re-testing to verify remediation and closure of identified security issues. Prepare comprehensive technical reports detailing vulnerabilities, risk ratings, proof of concept, and remediation recommendations. Present security findings to development, DevSecOps, and security stakeholders, providing guidance on mitigation strategies. Collaborate with application development teams to improve secure coding practices and application security throughout the software development lifecycle. Stay current with emerging attack techniques, vulnerabilities, security tools, and industry best practices. Required Skills Bachelor's Degree in Computer Science, Cybersecurity, Information Security, or