Tester III - Software Testing (Penetration Tester - Web & Mobile)

• Additional Comments:

  Job Description We are looking for a skilled and passionate Penetration Tester with hands-on experience in identifying vulnerabilities across mobile applications (iOS/Android), web applications, infrastructure, and thick client environments. The ideal candidate will have extensive experience in identifying vulnerabilities and assessing the security posture of our applications, systems, and networks in a fast-paced fintech environment. Key Responsibilities: • Conduct penetration tests on web and mobile applications, networks, thick client environments and systems to identify vulnerabilities and security flaws. • Perform manual and automated testing to simulate cyberattacks and exploit vulnerabilities. • Create detailed documentation of vulnerabilities with accurate descriptions, proof of concepts business impact, and actionable remediation steps. • Perform retests to validate patching and mitigations. • Analyze security issues, including but not limited to web applications, network protocols, operating systems, and cloud environments. • Stay updated with the latest cybersecurity threats, vulnerabilities, and attack techniques. • Coordinate with the application team throughout the assessment lifecycle, completing the tests, and delivering detailed reports. Requirements: • Proven experience as a Penetration Tester or in a similar cybersecurity role. • Strong understanding of OWASP Mobile Top 10, Web Top 10, and MITRE ATT&CK framework. • Hands-on experience with tools like Burp Suite, Frida, MobSF, Nmap, Wireshark, Metasploit etc. • Familiarity with SSL pinning, jailbreak/root detection bypass, certificate validation flaws, and reverse engineering for mobile apps. • Familiarity with various operating systems (Windows, Kali, macOS) and cloud platforms (AWS, Azure, GCP). • Knowledge of programming/scripting languages (e.g., Python, Bash, PowerShell) is a plus. • Strong communication skills with the ability to explain technical details to non-technical stakeholders. Preferred Skills: • Experience in mobile application penetration testing. • Ability to work independently and manage time effectively.

Information Security,Data Analysis,Penetration Testing