9 Burp Jobs

Are you fascinated by what happens after an app is compiled? Our team is seeking a driven Junior Android Reverse Engineer to turn that curiosity into a career. We provide a unique experience where you will be immersed in the complex world of mobile threat analysis from day one. You will be mentored by industry experts and get hands-on exposure to internal, state-of-the-art static and dynamic analysis tools. Your focus will be on delivering high-quality, high-speed analysis, deconstructing sophisticated Android applications to understand their core functionality and unmask potential threats. If you're ready to accelerate your skills, this is the place to do it. Responsibilities: Deep Dive Analysis: Conduct analysis of Android applications with speed and accuracy to understand their codebase, architecture, and functionality. Reverse Engineering Techniques : Employ reverse engineering techniques to extract information from the android applications Risk Identification: Identify user and device risk, data leakage, and malicious code execution within Android apps. Security Assessment : Conduct security assessments of Android applications to identify potential risks. Threat Intelligence: Review apps and provide the latest malware trends Collaboration: Collaborate with security researchers, developers, and other stakeholders to share findings, provide recommendations, and contribute to the development of secure software. Continuous Learning: Stay updated on the latest Android security threats, vulnerabilities, and reverse engineering techniques. Requirements: Analyzing or reverse engineering code, preferably of malicious applications Ability to read, comprehend and analyze source code Experience with Java or Kotlin Exposure to JavaScript, Flutter, and/or other mobile software languages Query languages such as SQL Preferred: Reverse Engineering tools such as Jadx, Ghidra, Frida, IDA Pro, Burp, to perform binary and APK analysis ELF (Native Binaries ) reverse engineering Understanding of the following topics Android Fundamentals such as Android activity lifecycles, common Android API usage, AOSP , and how an android application is created. Java and/or Kotlin Programing Language Fundamentals of Network traffic security Additional: Development of signatures (Yara, etc.) Research on threats such as APT using Open-Source Intelligence ( Virus Total, Web, ExploitDB, MITRE, etc.) In depth knowledge of security engineering and analysis topics, computer and network security, cryptography, authentication security, rooting, packing, network protocols and interception Nice to Have: Android Software Development Experience or Reverse Engineering experience Background / Familiarity with Google Ads or Content moderation Participation in a Capture the Flag (CTF) for Mobile software Pen testing, Blue Team, and/or Red Team experience Professional Experience and Education Required: 1 - 3 years experience in one or more of the following: Android Development, Reverse Engineering, Pen testing, Application Security Assessments Preferred: Associates/Bachelor’s Degree/master’s in computer science, computer engineering, CS, or information systems, or related discipline. 1 - 3 years of hands- on Android App Development /Reverse Engineering

As a part of the Information Security operation team, you will be responsible for delivering crucial management and reporting services across various Information Security platforms. This role entails tasks such as configuration, creating tools (scripts, procedures, and templates), defining reports, and recommending best practices and procedures to enhance the overall security posture. Your responsibilities will also include actively engaging in security operational activities, developing procedures, methods, reports, and scripts to streamline the monitoring and measurement of enterprise-wide IT Security Solutions. Proactively identifying and addressing potential security risks and incidents, configuring and monitoring security infrastructure, conducting vulnerability scanning and reporting, monitoring various log sources to detect risks and issues, creating event log dashboards, reports, and alerts, and contributing to the enhancement of the overall IT security architecture. In addition, you should possess hands-on knowledge and proficiency with tools such as Nmap, Kali Linux, Metasploit, Armitage, Maltego, Burp, Paros Proxy, Nessus, Nexpose, Wireshark, SQLMap, among others. This position requires a minimum of 2 years of experience and a strong background in Information Security. Preferred certifications include CEH, CHFI, ECSA, LPT, OSCP, OSCE, OSEE, and OSWE. Your expertise and active involvement will play a pivotal role in maintaining a robust and secure IT environment.,

The opportunity We are looking for a Cybersecurity Analyst (Product Security Engineer) to join our team and support cybersecurity, testing, and product security research and development. In this role, you will be responsible for analyzing and assessing security measures for our products, conducting testing to identify potential security threats, and devising solutions to address security vulnerabilities. As the primary contact, you will drive the security hardening of Products and Systems, as well as manage security-related knowledge and its implementation within the Enterprise Software Solutions organization. How you'll make an impact You will conduct cybersecurity research and analysis to identify potential security threats and perform testing to evaluate the security of our products. Additionally, you will analyze and evaluate security measures and controls, develop solutions to address security vulnerabilities, and contribute to the development of cybersecurity policies and procedures. Staying current with the latest trends and technologies in cybersecurity and product security will be crucial. Collaboration with the R&D team to integrate cybersecurity into the development process and the ability to work in a multinational team with an agile mentality are key aspects of the role. You will drive the consistent implementation of HE Cyber Security strategy, processes, and communication within Enterprise Software Solutions. Responsibilities include tracking, auditing, and reporting as per the internal Security Development Lifecycle, ensuring a timely process for handling security vulnerabilities in products, creating a comprehensive understanding of global cybersecurity risks and market requirements, and aligning with product management and R&D project leaders to incorporate security lifecycle into product development roadmaps. Anticipating and influencing current and future technologies and trends, actively contributing to finding, managing, and reducing cybersecurity risks, and conducting internal awareness and training programs are also part of the role. Compliance with applicable external and internal regulations, procedures, and guidelines is essential, as is living Hitachi Energy's core values of safety and integrity. Your background Ideal candidates will have 2 to 4 years of experience and hold a degree in Computer Science, Cybersecurity, or a related field. Familiarity with cybersecurity principles, penetration testing, and product security, as well as an understanding of common vulnerabilities and exploits, is required. Experience with at least one programming language, such as Python, C#, or C++, and familiarity with cybersecurity tools like Kali Linux, Metasploit, and Burp are beneficial. Strong problem-solving and analytical skills, the ability to work independently and collaboratively, and proficiency in both spoken and written English language are necessary. Qualified individuals with disabilities may request reasonable accommodations to support them during the job application process. Requests can be made by completing a general inquiry form on our website, including contact information and specific details about the required accommodation. This accommodation is specifically for job seekers with disabilities requiring accessibility assistance or support during the application process. Messages left for other purposes will not receive a response.,

As an Analyst in Cyber Security, you will be responsible for applying your hands-on expert knowledge of tools such as Burp, Nessus, Nmap, Nipper, Metasploit, and other latest tools in the field. Your expertise will be crucial in conducting Vulnerability Assessment and Penetration Testing (VAPT) across various domains including Cloud Security, Web, and Mobile Applications. You should possess a solid understanding of OWASP top 10 and other application/network security frameworks to effectively discover and analyze security vulnerabilities. Your experience in Web Application and Internal/External Network Testing will be key in identifying and mitigating security risks. Moreover, your skills in Configuration Review, policy review, system and network hardening, as well as endpoint review will play a vital role in enhancing the overall security posture. Experience in Application Code Review and Testing tools will be an added advantage in this role. Your ability to create comprehensive reports and communicate effectively, both in writing and verbally, will be essential as you directly engage with clients during projects. You will also be expected to review cyber-attack surfaces, recommend security measures, and conduct cyber investigations when necessary. A minimum of 1 year of post-qualification experience in Security Testing Projects is required for this position. Holding certifications such as CEH/CHFI, OSCP/eWPTX, or any other industry-recognized security certification will be advantageous. If you have a basic scripting knowledge in any language, it will be considered a plus. Additionally, your willingness to travel as needed will be appreciated in this role.,

At Arctic Wolf, we are redefining the cybersecurity landscape with our global team of Pack members committed to setting new industry standards. Our achievements speak for themselves, from being recognized in prestigious lists like the Forbes Cloud 100, CNBC Disruptor 50, and winning awards like the CRN Products of the Year. We are proud to be named a Leader in the IDC MarketScape for Worldwide Managed Detection and Response Services and to have earned the Customers" Choice distinction from Gartner Peer Insights. Arctic Wolf is not just leading but also shaping the future of security operations. Our mission is straightforward: End Cyber Risk. We are currently seeking a Security Developer to join us in achieving this goal. About The Role As a Security Developer at Arctic Wolf, you will work as a software developer focusing on enhancing the platforms threat, vulnerability, and configuration risk detection capabilities. Your primary objective will be to contribute to making security better for our clients daily. This role involves collaborating with team members, Product Management, Security Services, and other specialists to enhance the coverage and effectiveness of our Manage solution continuously. Your Responsibilities - Collaborate with team members to enhance coverage, efficiency, and deliver customer-facing and internal services. - Engage in the full software development lifecycle. - Develop well-designed, testable, efficient, and secure code for vulnerability and misconfiguration detection in areas such as Classic Endpoint Vulnerability And Config Management, Cloud Config And Posture Management. - Assist operational teams in resolving unexpected results, receiving feedback, and improving detection efficacy. Skills Requirements - Proficiency in at least one backend programming language like Go, Node.js, or Python. - Strong understanding and practical application of secure development practices. - Security-focused mindset with hands-on experience in operational security or security engineering. - Full understanding and use of DevOps methods and practices. - Familiarity with test-driven development (TDD) and robust testing strategies. - Experience with AWS, Docker, Kubernetes, IaC is an asset. Bonus Considerations For - Experience with 3rd Party Vulnerability Management tools, Cloud-based configuration and Security Posture Management tools, open-source vulnerability and pen-testing platforms. - IT Deployment backgrounds leveraging deployment automation tools like Salt or Ansible. Why Arctic Wolf At Arctic Wolf, we nurture a collaborative and inclusive work environment that values diversity of thought, background, and culture. Our commitment to growth and shaping the future of security operations is complemented by our dedication to customer satisfaction, with a vast customer base and global channel partners. We celebrate unique perspectives through our Pack Unity program and believe in corporate responsibility, giving back to the community. All employees at Arctic Wolf receive competitive compensation and benefits packages, including equity, flexible leave policies, training programs, comprehensive private benefits plan, fertility support, and more. Join us in our mission to End Cyber Risk and contribute to a safer digital world.,

As a Security Testing professional at Lexmark India, you will be part of a dynamic team dedicated to ensuring the security of our software products. You will have the opportunity to utilize your technical expertise to conduct web application security assessments and penetration tests. Your role will involve assessing applications for various security issues such as Authentication, Authorization, User management, Session management, Data validation, and common attacks like SQL injection, Cross-site scripting, and Command injection. Additionally, you will evaluate the security aspects of Web Services design and implementation, focusing on confidentiality, integrity, trust relationships, and authentication using security standards like XML signatures, XML encryption, SAML, and WS-Security. Your responsibilities will extend to thick client assessment, writing formal security assessment reports, and participating in client conference calls for data gathering and technical issue advisory. To excel in this role, you should possess hands-on experience with tools like Fiddler, Paros, Burp, Sqlmap, Nikto, Nmap, Openssl, Mallory, Wireshark, and have familiarity with mobile application development and assessment for platforms such as iOS, Android, and Windows. Knowledge of web application development languages like C#, Java, PHP, ASP.NET, scripting languages like Python, JavaScript, Ruby, SQL, and reviewing code in languages such as C, C++, Java, PHP, C#, ASP.NET, Go is essential. Moreover, expertise in automated source code analysis tools like Acunetix, Appscan, and certifications such as OSCP or CEH will be advantageous. Proficiency in version control software like git and Subversion, along with a demonstration of Lexmark core values including Innovation, Excellence, Agility, Integrity, Community, and Respect, will further enhance your suitability for this role. If you are a self-starter with a strong aptitude, analytical skills, and a passion for technology, and have 3 to 5 years of application security testing experience, then we encourage you to apply for this exciting opportunity with Lexmark India. Join us in our mission to deliver first-class products and solutions to our global customers. Apply now and showcase your innovative spirit with a renowned technology leader.,

About One One's mission is simple - to help customers achieve financial progress. One is creating simple solutions to assist customers in saving, spending, borrowing, and growing their money all in one place. The U.S. consumer today deserves better, as millions of Americans are unable to access credit, build savings or wealth, and are managing their financial lives through multiple disconnected apps. Approximately a quarter of U.S. adults are unbanked or underbanked, and about 80% of fintech users rely on multiple accounts to manage their finances. One is unique as it is backed by a preeminent fintech investor (Ribbit) and the world's largest retailer (Walmart), maintaining the speed and independence of a startup while employing a strong and growing collection of world-class talent. This presents an opportune moment to build a business that aids people in achieving financial progress. Come build with us! The Role As an Application Security Engineer at One, you will be responsible for ensuring that One delivers secure and reliable applications at scale. Your role involves partnering with engineers to integrate security into the product from the ground up, developing engineering tools and workflows to test and validate artifacts, and actively creating security frameworks. You will champion modern Application Security Engineering at One, directly impacting the security of all products. Additionally, you will provide subject-matter expertise to product teams on security best practices, optimize secure coding practices, utilize offensive security techniques to strengthen our environment, and enhance overall security practices. Responsibilities - Ensuring the quality and security of applications and products by guiding their development through the Secure Development Lifecycle (SDLC) process. - Conducting SAST/DAST and penetration testing on core application services, web applications, and mobile applications. - Developing, maintaining, and extending an in-house application security and penetration testing automated testing framework. - Creating secure libraries, hardening existing libraries and frameworks, and eliminating vulnerabilities. - Enforcing SDLC practices through Infrastructure-As-Code (IaC) policies whenever possible. - Collaborating closely with Engineering teams to validate the security posture of new features before production deployment. - Triaging and validating security vulnerabilities, acting as a subject-matter expert in AppSec for the Engineering team. - Refactoring and deploying secure libraries and frameworks across the code repository. - Training engineers, architects, code reviewers, and others on secure coding practices. - Contributing to application threat models and maintaining awareness of vulnerabilities in application technologies. - Working with Security and other engineering teams to maintain a security architecture that provides controls across all platforms to mitigate risk. - Providing expertise on code-level security concerns during product development. Requirements - 5+ years of experience in security engineering, DevSecOps, and application development. - Strong knowledge of CVSS, MITRE ATT&CK, and OWASP Top 10. - Proficiency in TypeScript and practical understanding of AWS core services. - Experience with modern application architecture, deployment practices, and secure software development frameworks. - Familiarity with Library/API/Framework development and integrating security scanning tools with CI/CD. - Expertise in security vulnerabilities, cryptography, and security evaluation tooling. - Exposure to technologies like AWS, iOS, Android, Vault, Kubernetes, React, GraphQL, and Datadog. - Understanding of regulatory compliance concerns (GLBA, CCPA, PCI). - Triple H Factor: Humble, Hungry, and Honest with an act-like-an-owner mentality. What it's like working @ One - Competitive compensation. - Benefits effective from day one. - Early access to a high-growth fintech startup. - Generous stock option packages. - Employer Provident Fund contributions. - Comprehensive health insurance for you and your family, including mental health support. - Flexible time off programs, monthly transport allowance, work-from-home stipend, and a hybrid working model. Leveling Philosophy One follows a flat titling structure to scale the company thoughtfully and avoid inequities. Internal titles reflect specific functional responsibilities and additional descriptors for clarity within the organization. Employees are compensated based on experience and internal level within One. Inclusion & Belonging,

The role of a Specialist in Software Testing requires a candidate with a minimum of 2-5 years of experience in Application Security Testing. As a Specialist, you will be responsible for working on OWASP Top 10 - application security risks, conducting Manual Security Testing & Analysis, and designing Security Tests. It is essential to possess excellent interpersonal and presentation skills, along with strong verbal and written communication abilities. Key Skills required for this role include proficiency in Application Security, OWASP, BURP, LINUX, and Manual Testing (TST). The role falls under the category of Information Technology in the Outsourcing/Offshoring industry. This is a full-time, permanent position. If you are looking to join a dynamic team where you can utilize your expertise in Software Testing and Application Security, this Specialist role is an excellent opportunity for you. Job Code: GO/JC/20600/2025 Recruiter Name: Sriram,

7+ years of related work experience. Strong written and verbal communication skills. Strong analytical and problem-solving skills. Ability to work on multiple projects at same time. Experience with mainstream defect tracking tools and test management tools. Proficient in any of the programming languages including Java, Python, SQL, and JavaScript/TS, with hands-on experience in building and testing backend and frontend components. Strong experience in designing, executing and maintaining automated and manual tests for REST/SOAP APIs. Experienced in UI automation for both browser and desktop applications using tools such as Selenium and Playwright (for web) and UFT and Squish (for desktop and hybrid applications). Experience in designing and executing performance and security tests using tools like JMeter, BURP suite or similar. Experience using test result reporting tools like Allure, Extent Reports or similar Well-versed in Continuous Integration/Continuous Deployment (CI/CD) pipelines using tools such as Jenkins, GitHub Actions, GitLab CI, and Azure DevOps. Also experienced in using Chocolatey for managing Windows-based dependencies and packages in CI pipelines and familiar with Coinbase CI/CD standards for secure and compliant deployment practices in financial environments. Skilled in version control systems like Git and experienced with repository management platforms such as Bitbucket, GitHub, and GitLab for collaborative development and code management. In addition, the following requirement is desired: Experience in the Financial Industry (trading tools with real-time cross-asset data and fixed income is preferred).