Apply
Web Application Tester
Fully Remote grand traverse, MI
Apply
Job Type
Contract, Temporary
Description


Position Summary


The Senior Web Application Penetration Tester performs security assessments of web applications, APIs, mobile applications, and cloud-hosted platforms. This role focuses on identifying application-layer vulnerabilities and validating exploitability. One week engagement. 


Key Responsibilities

  • Conduct OWASP Top 10 assessments. 
  • Perform authenticated and unauthenticated testing. 
  • Assess REST, SOAP, GraphQL, and microservice APIs. 
  • Conduct source code reviews when required. 
  • Validate remediation efforts. 
  • Develop detailed technical findings and risk ratings. 
  • Support security architecture reviews. 


Requirements

 

Required Qualifications

  • Minimum 5 years of application security testing experience. 
  • Experience testing: 
    • Web applications 
    • APIs 
    • Mobile applications 
    • Cloud-native environments 
  • Knowledge of: 
    • OWASP ASVS 
    • OWASP Top 10 
    • Secure SDLC 
  • Certification preferred: 
    • OSCP 
    • eWPT 
    • CEH 
    • GWAPT 
    • CREST CRT 

Nice-to-Have

  • Secure coding experience. 
  • Experience with SAST/DAST tools. 
  • FedRAMP assessment experience.
Apply

Xtreme Solutions Corporate Jobs

View All Jobs