Job Description

Job Type: Contract


Job Category: IT

Job Title:

Web Application Security & Penetration Testing Associate

Location -

Atlanta, GA (Onsite)

Contract

Job Summary:

We are seeking a skilled and detail-oriented Web Application Security and Penetration Testing Associate. This role involves identifying vulnerabilities in web applications, APIs, and related AWS infrastructure through manual and automated penetration testing techniques. The ideal candidate will have a strong understanding of web technologies, security principles, and ethical hacking methodologies.

Key Responsibilities:

Perform SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing)

Perform web application penetration tests to identify vulnerabilities such as SQL injection, XSS, CSRF, authentication flaws, and insecure configurations, etc.

Conduct manual and automated security assessments using industry-standard tools.

Analyze application architecture and source code for security weaknesses.

Prepare detailed reports outlining findings, risk ratings, and remediation recommendations.

Collaborate with development teams to validate fixes and improve secure coding practices.

Stay updated on latest security threats, exploits, and testing methodologies.

Support compliance efforts (e.g., OWASP Top 10)

Required Skills:

Web technologies (Angular, JAVA Spring boot, REST/ SOAP APIs)

Security frameworks (OWASP Top 10)

Networking fundamentals

Must have Hands-on experience with tools:

Burp Suite, Fortify DAST, SonarQube, Wireshark

Having hands-on knowledge on Kali Linux, Fortinet is good to have

Familiarity with secure coding practices and static/dynamic code analysis.

Ability to document and communicate technical findings to both technical and non-technical stakeholders.
---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------


Required Skills


CLOUD SECURITY ENGINEER

DEVOPS SECURITY ENGINEER

SECURITY ANALYST

SENIOR EMAIL SECURITY ENGINEER