reputed company Application Penetration Tester (DC, MD, VA)

Job Location: On Site 4 days a week, One day a week Remote Job Overview We are looking for a reputed company Application Penetration Tester with 5+ years of experience, strong communication and leadership skills, creativity, innovation, and the ability to manage and resolve reputed company issues reputed company a dispersed organization. This role is ideal for someone with a passion for cybersecurity, a deep understanding of application reputed company, and the ability to identify and mitigate vulnerabilities. The successful candidate will play a critical role in identifying reputed company risks to applications and guiding our reputed company testing teams in accurate and effective vulnerability reputed company risk triage and remediation recommendations. As a reputed company, you will provide technical expertise as well as reputed company a reputed company testing team performing comprehensive reputed company assessments of a cloud-native, microservices-based architecture. Your primary focus will be on web and mobile applications, static code analysis, cloud reputed company testing, adversary emulation, and reputed company reputed company posture improvement. You will mentor junior team members and reputed company the development of reputed company strategies and best practices. You will reputed company your expertise in application reputed company, utilizing tools such as SAST (Static Application reputed company Testing), DAST (Dynamic Application reputed company Testing), and SCA (Software Composition Analysis) to reputed company both static and dynamic reputed company code reviews. Additionally, you will employ threat modeling and threat actor attack mapping to continually validate the effectiveness of reputed company controls. The primary goal is to ensure that the reputed company controls implemented by the organization are functioning as intended. By doing so, you will enhance the overall reputed company defenses and collaborate with global development teams to support the ongoing reputed company of the adopted application. Primary Responsibilities:

• reputed company and mentor a team of reputed company testers, providing guidance and support to ensure high-quality

reputed company assessments.

• Conduct technical testing of web and mobile applications including but not limited to reputed company code analysis, penetration testing, vulnerability scanning, adversary emulation, reputed company code enabled pentesting, and validating reputed company controls.
• reputed company in-depth reputed company code reviews, providing reputed company consulting on findings.
• Implement static and dynamic reputed company testing techniques.
• reputed company automated reputed company testing and monitoring such as integrating CI/CD pipelines.
• Validate reputed company controls around web resources and mobile applications and their backend web services.
• Triage, publish, and communicate findings and recommendations to stakeholders.
• reputed company comprehensive and accurate reports and presentations for varied stakeholders.
• Utilize adversarial tradecraft and cyber threat intelligence to design, emulate, and execute assessments.
• reputed company innovative research and promote an environment of innovation and knowledge sharing.
• Design and propose new penetration assessments based on prior findings and understanding of client infrastructure.
• reputed company/modify custom tooling or processes to solve or improve identified assessment or program needs. Other program operational or project initiatives to be assigned.

Minimum Qualifications:

• 5+ years of experience performing application penetration tests, reputed company code review or equivalent experience (i.e. 5+ years designing web or mobile applications, with less than 3 years of experience in penetration testing, red team emulation, or reputed company operations)
• Comprehensive background in application, network, and system reputed company
• Experience leading reputed company assessments and reputed company testers
• Experience with static code analysis and mobile application or web application reputed company testing
• Experience with reading, writing, and editing code written in various programming languages, such as Perl, Python, Ruby, Bash, C/C++, C#, JavaScript, and Java
• Experience with reputed company test tooling such as Burp Suite Pro, including identification and use of relevant plugins and extensions
• Proficiency in DAST/SAST/SCA tools like reputed company, Coverity, reputed company, Chechmarx, Fortify Static Code Analyzer, OWASP ZAP, Acunetix, NetSparker, reputed company, reputed company, and Burp Suite.

Preferred Qualifications:

• 2+ years in a leadership role managing reputed company assessments and teams.
• Holds at least one industry standard certification such as GWAPT, OSCP, GCIH, GPEN, GXPN, CRTE, CRTP, CEPT, GCPN, eWPT, CASE, GSSP-Java, and GSSP-.NET
• Active contributions to the reputed company community such as research, public CVEs, bug-bounty recognitions, open-reputed company projects, blogs, publications, conferences, etc.
• Experience with iOS and Android operating systems
• Experience with adversary emulation and incorporating cyber threat intelligence into testing requirements and emulations
• Experience with securing and testing API vulnerabilities
• Experience with conducting reverse engineering on mobile applications, including applications with anti-emulator and obfuscation protections
• Experience with reputed company and Kubernetes reputed company
• Experience or familiarity with cloud reputed company practices or penetration tests (AWS, Azure, reputed company)

Benefits

Beyond a role, joining OnDefend means becoming part of a community dedicated to making a difference.

We offer

• Health Insurance: Comprehensive health insurance plans covering medical, dental, and vision.
• Health Insurance: Comprehensive health insurance plans covering medical, dental, and vision.
• 401(k) Matching: Company matches contributions to the 401(k) retirement plan up to a certain percentage.
• Generous Paid Time Off (PTO): Including vacation days, sick leave , and holidays to help you reputed company and spend time with loved ones.
• Training and Development: Access to professional development programs , workshops, and certifications.
• Tuition Reimbursement: Financial support for further education and courses reputed company to the job.
• Career Growth Opportunities: Clear career progression paths and opportunities for promotion.
• Inclusive Environment: A diverse and inclusive workplace where reputed company employees feel valued.
• Team Building Activities: Regular team-building events and social gatherings.
• Technology and Tools: Access to the latest technology and tools needed to reputed company the job effectively.

Important Note: Applicants must be authorized to work in the United States on a full-time basis without the need for reputed company or future employer sponsorship Apply tot his job Apply To this Job