Web Application Security Tester (VAPT)

About the Role

We are seeking an experienced Web Application Security Tester to identify and address security vulnerabilities across our applications. You will perform VAPT assessments, conduct security audits, and help strengthen our security posture.

Key Responsibilities

• 1Perform vulnerability assessment and penetration testing (VAPT) on web applications
• 2Identify and document security vulnerabilities following OWASP Top 10 and other standards
• 3Conduct API security testing and source code reviews
• 4Prepare detailed security assessment reports with remediation recommendations
• 5Collaborate with development teams to implement security fixes
• 6Stay current with the latest security threats, tools, and techniques
• 7Contribute to improving security testing processes and methodologies

Requirements

• 3+ years of experience in web application security testing
• Strong knowledge of OWASP Top 10 vulnerabilities and mitigation strategies
• Hands-on experience with security tools (Burp Suite, OWASP ZAP, Nmap, Metasploit)
• Understanding of web technologies (HTTP, HTML, JavaScript, REST APIs)
• Experience with manual and automated penetration testing techniques
• Strong report writing and communication skills
• Knowledge of security standards and compliance frameworks

Nice to Have

• Relevant certifications (CEH, OSCP, GWAPT, or equivalent)
• Experience with cloud security testing (AWS, Azure)
• Knowledge of mobile application security testing
• Scripting skills (Python, Bash) for custom security tools

What We Offer