Application Security Engineer (Pentester)

Responsibilities

• Discover security vulnerabilities through design review, source code review and penetration testing, either manually or by using automated tools, and follow up on the remediation process
• Participant in relevant agile scrum meetings and provide professional recommendations on the design of security controls, libraries, and/or protocols
• Conduct security-related training sessions
• Implement various security control verification and risk detection through automated scripts
• Provide support on application-level security monitoring, intrusion detection, and incident response

Requirements

• OSCP (or equivalent, such as CREST) is a MUST. 
• A deep understanding of OWASP Top 10 and the ability to detect and address logic flaws are highly desirable. 
• Minimum four years of experience in Web API testing and proficiency in using BurpSuite is preferred. 
• Experience with Mobile App testing, comprehension of jailbreaking/rooting a device, API hooking, reverse engineering, and de-obfuscation is highly beneficial
• Fluency in spoken and written English is essential, and proficiency in Mandarin would be advantageous.

We may use artificial intelligence tools to analyze the content of your Resume/CV against the specific requirements for the position. The purpose is to support our recruitment team in reviewing applications more effectively. These tools assist our recruitment team in their evaluation of your application by providing recommendations, but they do not replace human judgment. Final hiring decisions are ultimately made by humans who consider the insights generated by the tools along with other relevant information. If you would like more details about how your personal information is processed, please contact us.

Listed in: Cryptocurrency Jobs, Web3 Crypto Jobs, Developer Web3 Jobs, Engineering Web3 Jobs, Content Crypto Jobs, Security Web3 Jobs, AI Crypto Jobs, Mobile Web3 Jobs, Full Time Crypto Jobs.