11 days ago
Manual Penetration Tester
Jobs via Dice
Hybrid
Full Time
$180,000
Hybrid
Job Overview
Job TitleManual Penetration Tester
Job TypeFull Time
CategoryCommerce
Experience5 Years
DegreeMaster
Offered Salary$180,000
LocationHybrid
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
Manual Penetration Tester
Compu-Vision Consulting, Inc. is seeking a skilled Manual Penetration Tester to join their team. This contract role focuses on securing web and API applications through comprehensive manual testing techniques. You will be instrumental in identifying and exploiting vulnerabilities, conducting threat modeling, and guiding clients through remediation strategies, working independently on diverse engagements.
Key Responsibilities
- Perform manual application penetration testing on Web Applications, APIs (REST & SOAP), Mobile Applications, and Thick Client Applications.
- Conduct threat modeling, business logic testing, and application architecture reviews to identify potential weaknesses.
- Execute objective-based and abstract penetration testing engagements to ensure robust security postures.
- Develop and exploit Proof-of-Concept (POC) attacks to demonstrate vulnerability impact.
- Demonstrate application security testing methodologies in real-time to internal and external audiences.
- Work independently on engagements with minimal supervision, managing projects effectively.
- Clearly communicate findings, risk levels, and remediation guidance to both technical and non-technical stakeholders.
- Lead remediation discussions and support clients in evaluating security solutions.
Required Qualifications
- Minimum 5+ years of recent hands-on experience in Web application penetration testing, API security testing, and Mobile application security testing.
- Strong experience with manual testing techniques and business logic vulnerability discovery.
- Proficiency with industry-standard application security testing tools such as Burp Suite Pro and Netsparker.
- Excellent written and verbal communication skills for clear stakeholder interaction.
- Bachelor's degree in Computer Science, Cybersecurity, or equivalent industry experience.
Preferred Certifications (Not Required)
- GWAPT
- CREST
- OSWE
- OSWA
Key skills/competency
- Manual Penetration Testing
- Web Application Security
- API Security Testing
- Mobile Application Testing
- Vulnerability Discovery
- Threat Modeling
- Business Logic Testing
- Burp Suite Pro
- Netsparker
- Remediation Guidance
How to Get Hired at Jobs via Dice
- Research Compu-Vision Consulting, Inc.'s culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor.
- Tailor your resume for penetration testing: Highlight 5+ years in web/API pen testing, manual techniques, and tool proficiency like Burp Suite Pro.
- Showcase your technical expertise: Prepare to discuss past engagements, vulnerability discovery, and remediation strategies with specific examples.
- Emphasize communication and independence: As a Manual Penetration Tester, demonstrate your ability to articulate complex security concepts to diverse audiences and work autonomously.
- Highlight relevant certifications: While not required, mention preferred certifications like GWAPT, CREST, OSWE, or OSWA to stand out.
Frequently Asked Questions
Find answers to common questions about this job opportunity
01What types of applications will I test as a Manual Penetration Tester at Compu-Vision Consulting, Inc.?
02How does Compu-Vision Consulting, Inc. approach manual penetration testing engagements?
03What tools are essential for a Manual Penetration Tester at Compu-Vision Consulting, Inc.?
04Is previous consulting experience required for this Manual Penetration Tester role at Compu-Vision Consulting, Inc.?
05What is the expected level of independence for a Manual Penetration Tester at Compu-Vision Consulting, Inc.?
06How are findings communicated to clients by Compu-Vision Consulting, Inc.?
07What is the typical duration for contract engagements with Compu-Vision Consulting, Inc.?
08Will I be involved in developing Proof-of-Concept attacks for this Manual Penetration Tester role?
Explore similar opportunities that match your background