Penetration Tester

Key Responsibilities:

Application & API Security

• Perform comprehensive Vulnerability Assessment and Penetration Testing (VAPT) of web applications, APIs, and backend services.
• Conduct manual and automated security testing to identify vulnerabilities, misconfigurations, and business logic flaws.
• Assess API security using industry standards such as OWASP API Security Top 10.
• Review and test authentication and authorization mechanisms including JWT, OAuth 2.0, OpenID Connect, and SAML.

Mobile Security (Android)

• Perform security assessments of Android mobile applications, including static and dynamic analysis.
• Identify vulnerabilities related to insecure data storage, authentication, authorization, API communication, reverse engineering, and code tampering.
• Validate security controls implemented in mobile applications and recommend remediation measures.
<...