Application Offensive Security Consultant

Job SummaryAs a member of the Application Security team, the Application Offensive Security Consultant will support offensive security assessments on applications and provide expert guidance on key projects. The ideal candidate has a deep understanding of manual application security testing, red team adversarial engagements, and penetration testing, ensuring security best practices are integrated into development initiatives.Key ResponsibilitiesPerform offensive security testing against applications and APIs.Conduct application threat hunting to evaluate risks in applications.Perform manual security testing of applications.Document vulnerabilities in a predefined report format using manual methodologies and tools.Generate reports on assessment findings and provide recommendations for remediation.Respond to security engineering requests regarding application defense enhancements.Collaborate with Security Architects, Product Managers, and Risk Managers to deliver secure solutions. RequirementsRequired Technology Skill SetMinimum of 6 years experience testing web applications.Minimum of 4 years hands-on experience with application penetration testing tools, such as Burp Suite and OWASP ZAP.Ability to manually identify vulnerabilities in OWASP Top 10 without relying on automated scanners.Understanding of MITRE Framework and adversarial methodologies.Bachelor's Degree and/or equivalent experience.Nice-To-Have QualificationsOffensive security or penetration testing certifications.Certificates from penetration testing & red teaming courses.Passion for Capture The Flag (CTF) competitions and training platforms such as TryHackMe, HackTheBox.Ability to multitask, perform under pressure, and adapt in dynamic environments.