Application Penetration Tester 3
Responsibilities:
- Perform in-depth and full-spectrum application and system penetration tests of internally developed products and enterprise systems.
- Identify security risks within applications, network infrastructure and security controls.
- Review product and open-source code for the purpose of assessing security and determining weaknesses / vulnerabilities.
- In conjunction with application security engineers and product development staff, assist in building threat models of internally developed products and systems for the purposes of efficiency in penetration testing and red-team efforts.
- Build and maintain positive and productive working relationships with product development teams and individuals.
- Develop security assessment scripts and frameworks and assist in efforts to automate security testing and assessment activities.
- Mentor security champions with respect to penetration testing techniques, vulnerability research, and red-team tactics.
- Provide assistance in response to product security incidents where application / product security expertise is required.
- Participate in blameless postmortems and retrospectives in effort to improve security of products / systems.
- Continuously learn and keep abreast of the latest technical developments in the security space.
- Perform research into and present relevant security technology, practices, and threats.
- Work closely with a small team of application security and penetration testing staff, in conjunction with product development, to ensure company products and services withstand all foreseen and reasonable attacks.
Requirements:
- BS or MS in Computer Science or Engineering.
- Scripting and programming experience (Python, Java,.Net)
- Experience with security testing tools, such as Metasploit, Burp Suite, Fiddler, Wireshark, etc.
- Hands-on, in-depth experience in application penetration testing and/or red-team activities in support of product development and enterprise goals.
- Penetration testing experience on mobile platforms (Android, iOS)
- Experience in software engineering / development.
- Knowledge of open security standards such as OWASP ASVS ,NIST.
- In-depth knowledge of application security vulnerabilities and best practices.
- In-depth knowledge of network security, public cloud security (particularly AWS), PKI, and cryptography.
- Strong analytical and problem-solving skills.
- Ability to describe vulnerability findings to non-technical professionals.
- Excellent communication (oral, written, presentation) skills.
- GWAPT, CPT, OSCP, CEH, GMOB, GPEN certifications preferred.
- Experience in reverse engineering and tools (IDA Pro, Immunity ,Windbg, gdb) desirable.
- Track record in vulnerability research and CVE assignments highly desirable.
- Experience presenting at major security conferences is a plus.
- This position may require some weekend and evening assignments as well as availability during off-hours for participation in scheduled and unscheduled activities.
Get notified for similar jobs
Success!
Successfully subscribed for similar jobs
Failure!
Get tailored job recommendations based on your interests.
Please check your email
Profile recommendations
Similar Jobs
-
Application Security Engineer 4
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
The Application Security Engineer will assist Asurion in developing secure products by providing best-in-class application security services to the product development organization. This role is re...
-
Security Information & Event Management (SIEM) Engineer III
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
The SIEM Engineer III within the Monitoring and Response team contributes to a variety of global enterprise information security services in support of the Chief Security Officer. The Analyst III w...
-
IAM Engineer 3
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
Essential Duties & Responsibilities. Assist in day-to-day operational requests and requirements related to the IAM platform. Maintain and create IAM roles as requested or assigned. Use problem solving...
-
Sr. Analyst, Security Compliance
Location Calamba City, Laguna, Philippines Category Technology Job Type Full time
Responsible for the development, implementation and maintenance of Asurion’s compliance program, focusing on legal, regulatory and security standards compliance within the Philippines. Closely coll...
-
Data Governance 3
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
Asurion is looking for an automation engineer with data analyst experience to join the Data Governance team to help us continue to grow and build a top-notch program. Our team is responsible for ma...
-
Data Governance 2
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
Asurion is looking for an automation engineer with data analyst experience to join the Data Governance team to help us continue to grow and build a top-notch program. Our team is responsible for ma...
-
Senior Full Stack Engineer
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
We are looking for an experienced Senior Fullstack Engineer with a strong backend focus to design and develop scalable systems, contribute to frontend architecture, and collaborate with MLOps and i...
-
PHSOC Security Specialist
Location Calamba City, Laguna, Philippines Category Technology Job Type Full time
As an essential component of Asurion’s Global Security and Risk organization, the Asurion Philippines Security Operations Center (Ph-SOC) has the responsibility to proactively detect any situations...
-
SQA Analyst 2
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
The SQA Analyst oversees all aspects of the application and functional testing activities for a given effort. The SQA Analyst will define, develop, and maintain test plan and test cases, and will a...
Jobseekers Also Viewed
-
IAM Engineer 3
Location Taguig City, National Capital Region (Manila), Philippines Category Technology
Essential Duties & Responsibilities. Assist in day-to-day operational requests and requirements related to the IAM platform. Maintain and create IAM roles as requested or assigned. Use problem solving...
-
Senior Accounting Analyst
Location Taguig, Metro Manila, Philippines Category Finance Job Type Full Time
Job Requirements . SENIOR ACCOUNTING ANALYST - General Ledger, Shared Services. (Hybrid Set-Up). The Senior Finance Analyst will be working with the finance team in COE (Manila Team) and will be integral...
-
Asurion Rookie
Location Calamba City, Laguna, Philippines Category Supply Chain
A Intern student for strategic management facilitates strategic projects aligned with company’s AOP that involve cross functional engagement of different departments within TCP walls to ensure deliverables...
-
Asurion Rookie
Location Calamba City, Laguna, Philippines Category Supply Chain
A Intern student for strategic management facilitates strategic projects aligned with company’s AOP that involve cross functional engagement of different departments within TCP walls to ensure deli...
-
Asurion Rookie
Location Calamba City, Laguna, Philippines Category Supply Chain Job Type Full time
The role will have hands-on experience on manufacturing set-up by completing tasks under the supervision of an Industrial Engineer.Industrial Engineering Student