Job Description

Job Title: Web Application Security & Penetration Testing Associate
Location: Atlanta, GA


Job Summary:


We are seeking a skilled and detail-oriented Web Application Security and Penetration Testing Associate. This role involves identifying vulnerabilities in web applications, APIs, and related AWS infrastructure through manual and automated penetration testing techniques. The ideal candidate will have a strong understanding of web technologies, security principles, and ethical hacking methodologies.



Key Responsibilities:


Perform SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing)


Perform web application penetration tests to identify vulnerabilities such as SQL injection, XSS, CSRF, authentication flaws, and insecure configurations, etc.


Conduct manual and automated security assessments using industry-standard tools.


Analyze application architecture and source code for security weaknesses.


Prepare detailed reports outlining findings, risk ratings, and remediation recommendations.


Collaborate with development teams to validate fixes and improve secure coding practices.


Stay updated on latest security threats, exploits, and testing methodologies.


Support compliance efforts (e.g., OWASP Top 10)





Required Skills:


Web technologies (Angular, JAVA Spring boot, REST/ SOAP APIs)


Security frameworks (OWASP Top 10)


Networking fundamentals


Must have Hands-on experience with tools:


Burp Suite, Fortify DAST, SonarQube, Wireshark


Having hands-on knowledge on Kali Linux, Fortinet is good to have


Familiarity with secure coding practices and static/dynamic code analysis.


Ability to document and communicate technical findings to both technical and non-technical stakeholders.

Job Tags

Similar Jobs