Application Penetration Tester

Job Description

Insight Globals client is looking for an Application Security Penetration Tester to join their team in Washington, DC. This person will work closely in a team of 5 individuals doing source code review and penetration testing to identify any security concerns or vulnerabilities within mobile applications. You will be testing security within a microservices based environment and performing some red team responsibilities. Also, you will be responsible for conducting assessments and providing documentation of the findings.

Compensation: $125,000 - $155,000 per year

We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to . The EEOC "Know Your Rights" Poster is available here .

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: .

Skills and Requirements

4+ years of experience conducting manual Source Code reviews.

Experience with automated testing tools for SAST (Static Application security Testing), DAST (dynamic Application security Testing), and SCA (software Composition Analysis)

Example tools: Checkmarx, Burp Suite Pro, Plextrac, Veracode, Hashicorp Vault

4+ years of experience with hands on manual penetration testing

Example tools: Synopsis, Veracode

Experience with web application and API testing

Example tools: Postman, SmartBear, SoapUI

Experience with mobile testing (ios and android) with tools such as Corellium or similar

Experience testing within a cloud environment

Proficient reading and/or coding in multiple programming languages

Excellent verbal & written communication as this person will be reporting findings to various stakeholders. - Bachelors degree in computer science or related field

- Security certifications such as:

o GWAPT

o CEH

o OSCP null

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to .