Lead complex testing engagements, shape service offerings, and develop people by combining deep technical tradecraft with strong client leadership to manage application security risk
Job Summary
Lead complex testing engagements, shape service offerings, and develop people by combining deep technical tradecraft with strong client leadership to manage application security risk.
Work closely with CISOs, engineering leaders, and product teams to scope, deliver, and explain application security assessments across web, mobile, API, and cloud-native environments.
Contribute to service development by enhancing methodologies, checklists, and tooling approaches, including AI-augmented testing workflows, and foster a positive and inclusive team environment.
Matching Summary
Lead complex testing engagements, shape service offerings, and develop people by combining deep technical tradecraft with strong client leadership to manage application security risk.
Skills & Requirements
Must-have
advanced manual testing techniques
business logic abuse
chained exploits
web, mobile, API, cloud-native testing
OWASP Top 10, API Top 10
identify and exploit application vulnerabilities
Burp Suite Pro, ZAP, proxy tools
Nice-to-have
AI-assisted techniques in security testing
secure SDLC practices integration
client security and product leadership communication
team capability uplift
service development enhancement
Key Requirements
5+ years of experience in application security
1-2 years in a lead or supervisory role
Bachelor's Degree in relevant field or equivalent experience
In-depth understanding of web applications, APIs, services
Strong understanding of web and application security frameworks
Proven ability to identify and exploit application vulnerabilities