Application Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Galent ยท 1 day ago

Application Security Engineer

positionUnited States
timeContract
remoteRemote
senioritySenior Level
date5+ years exp

Galent is seeking an Application Security Engineer to perform manual application penetration testing across various platforms. The role involves conducting threat modeling, developing Proof of Concepts for vulnerabilities, and guiding engineering teams on remediation strategies.

Computer Software
Hiring Manager
Vinoth T
linkedin

Responsibilities

Perform manual application penetration testing across:
Web Applications
REST & SOAP APIs
Mobile Applications (iOS & Android)
Thick Client Applications
Conduct threat modeling, business logic testing, and application architecture reviews
Execute objective-based and abstract penetration testing engagements
Develop, validate, and exploit Proof of Concepts (PoCs) for identified vulnerabilities
Demonstrate testing methodologies and findings through live demos to internal teams and external clients
Work independently on penetration testing engagements with minimal supervision
Clearly communicate security risks, attack paths, and findings to both technical and non-technical audiences
Guide engineering teams on remediation strategies and assist stakeholders in evaluating mitigation options
Produce high-quality, detailed penetration testing reports with actionable recommendations

Qualification

Application penetration testingBurp Suite ProfessionalOWASP Top 10Netsparker (Invicti)Secure application architectureCommunication skillsProblem-solving skills

Required

5+ years of recent hands-on experience in application penetration testing
Strong experience testing: Web applications
Strong experience testing: APIs (REST/SOAP)
Strong experience testing: Mobile applications
Proven ability to present findings and lead remediation discussions
Advanced hands-on experience with Burp Suite Professional
Experience with additional application security tools such as Netsparker (Invicti) or similar
Strong understanding of: OWASP Top 10 (Web, API, Mobile)
Strong understanding of: Secure application architecture and business logic vulnerabilities
Bachelor's degree from an accredited institution or equivalent industry experience

Company

Galent

twitter
company-logo
Galent is an AI-native digital engineering firm at the forefront of the AI revolution, dedicated to delivering unified, enterprise-ready AI solutions that transform businesses and industries.
dateFounded in 2024
people-size501-1000 employees
web-link
https://www.galent.com

Funding

Current Stage
Late Stage
Company data provided by crunchbase