Lead Application Penetration Tester

Required skills and experience:

• 7 or more years of experience conducting manual Source Code reviews.
• Strong Experience with testing Mobile Applications.
• Experience automating testing tools for SAST (Static Application security Testing), DAST (dynamic Application security Testing), and SCA (software Composition Analysis).
• Experience with hands on manual penetration testing.
• Experience with web application and API testing.
• Experience testing within a cloud environment.
• Proficiency reading and/or coding in multiple programming languages.
• Experience with testing within Cloud environments.
• Excellent verbal & written communication as this person will be reporting findings to various stakeholders.

Preferred skills and experience:

• Bachelors degree in computer science or related field.
• Security certifications such as:
• GWAPT
• CEH
• OSCP

Day to Day:

Insight Global’s client is looking for an Lead Application Security Penetration Tester to join their team in Washington, DC. This person will work closely in a team of 5 individuals doing source code review and penetration testing to identify any security concerns or vulnerabilities within mobile applications. You will be testing security within a microservices based environment and performing some red team responsibilities. Also, you will be responsible for conducting assessments and providing documentation of the findings. This role is a direct hire through a security consulting client. It is 4 days onsite with 1 day remote in Washington, DC. The starting salary is $160,000 plus bonus and flexibility for relocation assistance.