Free cookie consent management tool by TermsFeed Web Application Penetration Tester | Antal Tech Jobs
Image
Post a Job
Back to Jobs
3 Days ago

Web Application Penetration Tester

Apply Now
decor
Chennai, Tamil Nadu, India
Information Technology
Other
WTW

Overview

  • 202501122
  • India
  • Taguig, Metro Manila, Philippines
Bevorzugt

Description

The Role
Please enter the responsibilities of the role

Responsibility:
  • Vulnerability Assessment: Conducting comprehensive assessments of web applications and Infrastructure to identify security vulnerabilities, such as cross-site scripting (XSS), SQL injection, authentication flaws, insecure configurations, poor host device and service configurations, and use these to penetrate deeper into the application/server.
  • Penetration Testing: Performing controlled attacks on web applications. APIs, infrastructure, and simulate real-world hacking attempts and identify potential entry points for attackers. This involves utilizing various techniques, tools, and methodologies to exploit vulnerabilities and gain access.
  • Security Analysis: Analyzing the results of penetration tests to assess the severity of identified vulnerabilities, their potential impact on the system and the business, and the likelihood of exploitation.
  • Reporting and Documentation: Preparing detailed reports that document the findings, including identified vulnerabilities, attack vectors, and recommendations for remediation. These reports typically outline the risks associated with each vulnerability and provide guidance on how to mitigate them.
  • Remediation Support: Collaborating with developers and system administrators to assist in the remediation of identified vulnerabilities. This may involve providing guidance on secure coding practices, recommending security controls, or validating the effectiveness of implemented fixes.
  • Stay Up to Date: Keeping abreast of the latest web application and infrastructure vulnerabilities, attack techniques, security tools, and industry best practices. This includes staying informed about emerging threats and trends in web applications and infrastructure.
  • Ethical Approach: Conducting all testing and assessment activities within a legal and ethical framework, ensuring that the organization's systems and data are not compromised or harmed during the process.
  • Continuous Improvement: Engaging in professional development activities, such as attending conferences, participating in training programs, and obtaining relevant certifications, to enhance knowledge and skills in cyber security.
The Requirements
Please enter the minimum criteria, skills, education, licenses etc. required to do this job
Minimum Criteria:
  • Education: A bachelor's degree in a related field such as computer science, information security, or cybersecurity is commonly preferred, but not always mandatory. Relevant industry experience can compensate for formal education requirements.
  • Technical Knowledge: A strong understanding of web technologies, programming languages (e.g., HTML, CSS, JavaScript, PHP, Python), and web application architecture is essential. Knowledge of networking fundamentals, operating systems, and databases is also beneficial.
Skills:
  • Web Application Security: In-depth knowledge of web application vulnerabilities, common attack techniques, and mitigation strategies. Strong understanding of OWASP Top 10 vulnerabilities is crucial.
  • Infrastructure security: Working knowledge of different on-prem and cloud builds (IaaS, PaaS, SaaS), in-depth understanding of operating system and its common flaws.
  • Penetration Testing Techniques: Proficiency in various penetration testing methodologies, tools, and frameworks. Experience with manual testing techniques, automated vulnerability scanners, and exploit frameworks is necessary.
  • Programming and Scripting: Proficiency in at least one programming language (e.g., Python, Ruby, or JavaScript, etc.) to write custom scripts and tools. Understanding SQL queries for database testing is also important.
  • Analytical and Problem-Solving Skills: Ability to analyze complex web application environments, identify vulnerabilities, and exploit them. Strong problem-solving skills to understand attack vectors and recommend appropriate countermeasures.
Holds relevant industry certification/s or equivalent like the following:
  • CEH – Certified Ethical Hacker
  • OSCP – Offensive Security Certified Professional
  • GPEN – GIAC Penetration Tester
  • PNPT – Practical Network Penetration Tester
  • Burp Suite Certified Practitioner
  • eWAPT/eWAPTx – eLearning Web Application Penetration Tester

Practical experience gained through participation in bug bounty programs, capture-the-flag (CTF) competitions, and real-world projects can also be valuable in showcasing skills and expertise.


Qualifications

Share job
Similar Jobs
View All
7 Hours ago
Full Stack Developer (React + Python + AWS)
Information Technology
  • 5 - 8 Yrs
  • Pune
About the Client: They are a Global leader in delivering cutting-edge inflight entertainment and connectivity (IFEC) solutions. About the Role: Roles and Responsibilites Lead Frontend Development (70%): Design, build, and optimize inte...
More info
decor
14 Hours ago
Senior Full Stack Software Engineer
Information Technology
  • 5 - 10 Yrs
  • Bangalore
Job Title: Senior Full Stack Software Engineer Location: Bengaluru Experience: 5+ Years Job Type: Full Time What our client offer Our client believes in rewarding our employees for their hard work. Our client offer competitive sala...
More info
decor
14 Hours ago
Technical Delivery Engineer
Information Technology
  • 10 - 15 Yrs
  • Bangalore, Gurgaon / Gurugram
Location: Bangalore / Gurugram Mode: Hybrid (2–3 days in office per week) Experience Required: 10+ years Employment Type: Permanent Role Overview As a Technical Delivery Engineer, you will be a key member of our infrastructure delivery t...
More info
decor
15 Hours ago
Lead Endur Specialist
Information Technology
  • 13 - 20 Yrs
  • Bangalore
What we offer: Our Client, believes in rewarding our employees for their hard work. We offer competitive salaries, company pensions and performance related benefits. Our people can also take advantage of our extensive flexible benefits package and...
More info
decor
1 Day ago
UI Developer
Information Technology
  • 2 - 5 Yrs
  • Mumbai
Location: Mumbai, India Job Type: Full-Time Department: Design & Front-End Development Role Summary We’re on the hunt for a detail-oriented and creative UI Developer to bring intuitive, responsive, and visually striking interfaces to life...
More info
decor
1 Day ago
Full Stack Developer
Information Technology
  • 2 - 5 Yrs
  • Mumbai
Location: Mumbai, India Employment Type: Full-time Department: Engineering / Technology Role Overview We’re looking for a proactive and skilled Full Stack Developer to join our dynamic team. The ideal candidate will be passionate about bu...
More info
decor
1 Day ago
Senior .Net Developer - C#/ASP/MVC
Information Technology
  • Mumbai, Maharashtra, India
MultiverseTech is seeking a highly skilled and experienced Senior .NET Developer for a contractual role. We're looking for a proactive problem-solver with a strong background in developing robust, scalable, and high-performance web applications. If ...
More info
decor
1 Day ago
Dark Matter Technologies - SQL Developer
Information Technology
  • Mumbai, Maharashtra, India
Key Responsibilities Design, develop, and optimize stored procedures, functions, views, and scripts for SQL Server. Implement and manage database indexing and partitioning strategies to enhance performance. Monitor and troubleshoot SQL Server per...
More info
decor

Talk to us

Feel free to call, email, or hit us up on our social media accounts.
CONTACT US
Email info@antaltechjobs.in
Social media