Resource Application Penetration Tester (APT)

Job Summary:

Application Penetration Tester (APT)

The role involves identifying vulnerabilities, simulating real-world attacks, and recommending mitigation measures to strengthen application security.

The tester will collaborate with development, infrastructure, and security teams to ensure applications meet the highest security standards.

Key Responsibilities:

• Perform

  manual and automated penetration testing

  on web, mobile, and API applications.
• Identify and validate vulnerabilities, misconfigurations, and security weaknesses.
• Conduct

  threat modeling and risk assessments

  for new and existing applications.
• Prepare detailed

  vulnerability reports

  with risk ratings and remediation recommendations.
• Collaborate with developers and system owners to provide

  security guidance and fixes

  .
• Stay up-to-date with

  emerging threats, exploits, and security tools

  .
• Assist in establishing and maintaining secure coding standards and best practices.
• Conduct

  retesting

  after vulnerability remediation and verify fixes.
• Participate in

  red team exercises

  and simulate advanced persistent threat (APT) attacks.
• Maintain compliance with relevant standards such as

  OWASP Top 10, NIST, ISO 27001, and PCI-DSS

  .

Required Skills & Qualifications:

• Bachelors degree in Computer Science, Information Security, or related field.
• Proven experience in

  application penetration testing

  and vulnerability assessments.
• Strong knowledge of

  OWASP Top 10, SANS 25

  , and secure software development lifecycle (SSDLC).
• Hands-on expertise with tools such as:

  • Burp Suite, OWASP ZAP, Metasploit, Nmap, Nessus, Nikto, SQLMap, Kali Linux, Postman

    , etc.
• Proficiency in scripting languages such as

  Python, Bash, or PowerShell

  .
• Experience in testing

  APIs, cloud-based apps, and mobile (Android/iOS) applications

  .
• Strong analytical, problem-solving, and report-writing skills.