Job Overview
We are seeking a skilled Vulnerability Assessment and Penetration Testing (VAPT) Specialist to support the identification, assessment, and remediation of security vulnerabilities across web and mobile applications. This role requires hands-on experience in security testing, risk analysis, and stakeholder collaboration to help strengthen application security and support secure development practices.
Key Responsibilities
- Perform vulnerability assessments and penetration testing activities for web and mobile applications.
- Identify security weaknesses, validate vulnerabilities, and assess potential business and technical risks.
- Prepare comprehensive assessment reports, including findings, risk ratings, and actionable remediation recommendations.
- Collaborate with development, engineering, and support teams to provide guidance on vulnerability remediation and security best practices.
- Facilitate meetings, workshops, or consultation sessions to support the resolution of identified security issues when required.
- Manage assigned security testing activities and ensure timely completion of deliverables.
- Provide regular status updates and progress reports to stakeholders and management.
- Maintain strict confidentiality and safeguard sensitive information throughout all phases of testing and reporting.
Required Qualifications
- Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related four-year degree program.
- Minimum of 3 years of hands-on experience conducting vulnerability assessments and penetration testing for web and mobile applications.
- Strong understanding and practical application of the OWASP Top 10 security testing framework.
- Experience using a combination of open-source and commercial security assessment tools, including but not limited to Kali Linux, Metasploit, Qualys, Nessus, Burp Suite, and OWASP ZAP.
- Working knowledge of web and mobile application development concepts, architectures, and technologies.
- Ability to create clear, concise, and well-structured assessment reports suitable for both technical and non-technical audiences.
- Strong analytical, communication, and problem-solving skills.
Preferred Qualifications
- Relevant cybersecurity certifications such as Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), or equivalent industry-recognized credentials.
