Must Haves:
A high number of candidates may make applications for this position, so make sure to send your CV and application through as soon as possible.
* 7+ years of experience conducting manual Source Code reviews
* Experience with automated testing tools for SAST (Static Application security Testing), DAST (dynamic Application security Testing), and SCA (software Composition Analysis)
* Example tools: Checkmarx, Burp Suite Pro, Plextrac, Veracode, Hashicorp Vault
* 7+ years of experience with hands on manual penetration testing
* Example tools: Synapsys, Veracode
* Experience with web application and API testing
* Example tools: Postman, SmartBear, SoapUI
* Experience with mobile testing (ios and android) with tools such as Corellium or similar
* Experience testing within a cloud environment
* Proficient reading and/or coding in multiple programming languages
* 2+ years of experience in a leadership role
* Excellent verbal & written communication as this person will be reporting findings to various stakeholders
Nice to Haves:
* Bachelor's degree in computer science or related field
* Security certifications such as:
* GWAPT
* CEH
* OSCP
Day to Day:
Insight Global’s client is looking for a Lead Application Security Penetration Tester to join their team in London, UK. This person will work closely within a team of 5 individuals doing source code review and penetration testing to identify any security concerns or vulnerabilities within mobile applications. You will be testing security within a microservices based environment and performing some red team responsibilities. Also, you will be responsible for conducting assessments and providing documentation of the findings of other application penetration testers to present to stakeholders. Excellent written and verbal communication is essential for this role.