24 hours ago
Manual Penetration Tester
Jobs via Dice
Hybrid
Full Time
$135,000
Hybrid
Job Overview
Job TitleManual Penetration Tester
Job TypeFull Time
Offered Salary$135,000
LocationHybrid
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
Manual Penetration Tester at Georgia IT
Georgia IT is seeking a skilled Manual Penetration Tester to join their team. This role focuses on performing in-depth application security assessments across various platforms.
Responsibilities
- Perform manual Application penetration testing against APIs (REST/SOAP), Web Applications, Mobile applications, and thick client applications.
- Execute threat modeling, evaluate application business logic, and conduct application architecture reviews.
- Demonstrate application testing expertise in real time via demos to both internal and external audiences.
- Conduct objective-based, abstract penetration testing engagements.
- Develop and exploit Proof-of-Concepts (POCs).
- Act independently in penetration testing engagements, requiring minimal oversight and guidance.
- Engage with technical and non-technical audiences to articulate testing processes, techniques, and results; guide technical audiences on remediation options and assist clients in weighing those options.
Qualifications
- Minimum 5 years of recent experience in application penetration testing of APIs, web applications, and mobile applications.
- Ability to communicate reporting results effectively with technical and non-technical audiences and lead remediation conversations.
- Experience with Burp Suite Pro and other application testing tools such as Netsparker.
- Bachelor's degree from an accredited college/university or equivalent industry experience.
- One or more major ethical hacking certifications (GWAPT, CREST, OSWE, OSWA) are preferred but not strictly required.
Key skills/competency
- Application Penetration Testing
- API Security Testing
- Web Application Security
- Mobile Application Security
- Threat Modeling
- Burp Suite Pro
- Vulnerability Assessment
- Exploit Development
- Security Reporting
- Client Engagement
How to Get Hired at Jobs via Dice
- Research Georgia IT's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor. Understand their approach to cybersecurity and client solutions.
- Customize your resume strategically: Highlight your 5+ years of application penetration testing experience, specifically mentioning API, web, and mobile testing. Emphasize your proficiency with tools like Burp Suite Pro and your ability to conduct threat modeling and exploit development for Georgia IT.
- Showcase your technical prowess: Prepare to discuss past penetration testing engagements, detailing your methodologies, the types of vulnerabilities you've identified, and how you've guided remediation efforts. Be ready for technical deep dives related to application security.
- Refine your communication skills: As this Manual Penetration Tester role requires engaging with both technical and non-technical audiences, practice articulating complex security concepts clearly and concisely. Demonstrate your ability to lead remediation conversations effectively for Georgia IT's clients.
- Highlight relevant certifications: While not required, ethical hacking certifications like GWAPT, CREST, OSWE, or OSWA are preferred. If you hold any, ensure they are prominently featured and be prepared to discuss the knowledge and skills gained from them in your interview with Georgia IT.
Frequently Asked Questions
Find answers to common questions about this job opportunity
01What kind of application penetration testing will I primarily perform as a Manual Penetration Tester at Georgia IT?
02Does Georgia IT require specific ethical hacking certifications for the Manual Penetration Tester role?
03What tools are essential for a Manual Penetration Tester at Georgia IT?
04How important is communication in the Manual Penetration Tester role at Georgia IT?
05Will I be working independently on penetration testing engagements at Georgia IT?
06What kind of experience with Proof-of-Concepts (POCs) is expected for this role at Georgia IT?
Explore similar opportunities that match your background