Application Security Tester (OWASP, SANS, API Security, IAM, DirBuster)
Plano, TX (Local / ready to relocate- Hybrid work model) 75024
6+ Months
JD:
• This position’s responsibility includes:
o Perform vulnerability assessment, and penetration testing on vehicle applications (including but not limited to Cloud services, APIs, mobile/web application) o Produce reports/artifacts, recommendations for remediations, and provide support to strengthen the security stance of the vehicle ecosystem o Perform revalidation testing, and provide the supporting evidence o Participate on various security projects such as technical design review, test specifications o Ability to translate technical security requirements into test cases o Collaborate on security research activities such as testing tools, and emerging threats that may have an adverse impact on vehicle cybersecurity
Minimum 2 skills:
- Strong understanding of security testing framework for Mobile/Web applications (e.g., OWASP, SANS)
- Proficient knowledge of API security, IAM, and source code analysis
- Hand-On experience on testing tools such as DirBuster, wapiti, Burp Suite, postman, sqlmap, etc.
- Understanding of Cryptography, SSL/TLS, and PKI
- Advance skills on writing scripts in various languages such as Bash, Python, and PowerShell
- Ability to articulate complex technical concepts to non-technical audience
- Strong security background on CTFs, Mobile/Web application security
- Hand-On experience with security testing tools, standards, and best practices
- Advance knowledge SDLC, cloud security, and reverse engineering