Role: Application Security Consultant
Duration: 6 Month CTH (USC/GC ONLY)
Location: Coppell, TX (hybrid, 3 days onsite)
REQUIRED: Certified in OSCP or GWAPT (REQUIRED—we cannot submit people without one of these certifications)
The Application Security Associate is responsible for the security testing and risk analysis of DTCC’s applications using various application security tools. Interaction with DTCC developers (Application Development (AD)) to provide guidance, best practices and technical assistance in remediating application security issues will be part of the responsibilities. The individual should possess strong application software expertise, along with excellent communication, and organizational skills.
Qualifications
- Minimum of 5 years of experience in application penetration testing
- Bachelor's degree is desirable
- Minimum of 3 years of experience in App Pentest tools such as Burp Suite and WebInspect
- Certified in OSCP or GWAPT (REQUIRED—we cannot submit people without one of these certifications)
RESSPONSIBILITIES
- Perform Ethical Application Penetration Testing (EAPT) on web applications and APIs.
- Coordinate with application development teams to collect the application details.
- Provide the vulnerability information in the predefined report format after performing the App Pentest using manual methodology and App Pentest tools such as Burp Suite and Web Inspect
- Provide assistance to the developers in detailing the vulnerabilities reported along with the recommendations for remediation
- Align risk and control processes into day-to-day responsibilities to monitor and mitigate risk; escalates appropriately