Job description
Required technical skill set: Application Security Penetration testing.
Job Description:
· Experience in performing penetration testing on enterprise networks, web applications, APIs and thick client applications
· Familarity with common web vulnerabilities including XSS, XXE, SQL Injection, Deserialization Attacks, File Inclusion/Path Traversal Attacks, Server-side Request Forgery, Remote Execution flaws, Server configuration flaws and Authentication flaws
· Experience in testing web based APIs (REST, SOAP, XML, JSON). Experience in designing and documenting pragmentic remediation guidance for discovered vulnerabilities
· Experience on both commercial and open-source tool such as kali linux, metasploit, Burpsuite, sqlmap, nmap and others