Senior Application Security Testing

Title: DAST Application Security Testing

Location: Pittsburgh PA

Duration: Full Time/Permanent

• 
  
  This role is responsible for delivering comprehensive dynamic application security testing services to support project and business requirement
• s.Demonstrated expertise in application vulnerability assessment and penetration testing, with strong exposure to ethical hacking techniques and industry standards such as OWASP Top 10, NIST, OSSTMM, and OSIN
• T.Strong understanding of application frameworks, runtime behavior, and input validation mechanisms, including the role of sanitizers and filters in preventing vulnerabilitie
• s.Solid knowledge of core security concepts, including authentication and authorization mechanisms, cryptographic libraries, secure coding practices, and server-side security control
• s.Ability to identify, analyze, and clearly explain security vulnerabilities, including associated risk and impact, to both technical and non-technical stakeholder
• s.Document identified vulnerabilities with clarity and accuracy, and actively collaborate with application development teams to support effective remediatio
• n.Hands-on experience with DAST and offensive security tools such as IBM AppScan, Burp Suite, and open-source toolsets including Kali Linu
• x.Apply a risk-based approach to translate technical security findings into meaningful business risks and prioritized remediation action
• s.Evaluate, recommend, and propose security testing tools and techniques to enhance the quality and effectiveness of dynamic security testing activitie
• s.Demonstrate strong verbal and written communication skills, with the ability to engage diverse audiences, ask insightful questions, and deliver high-impact presentation
• s.Possession of at least one industry-recognized security certification is mandatory; OSCP is highly preferre

d.Prior exposure to the banking or financial services domain is an added advantag