Senior Specialist, MAST Application Penetration Tester
Job Description
KPMG seeks a Senior Specialist, MAST Application Penetration Tester in Washington, DC, onsite, to perform manual testing of APIs, Web and Mobile applications and to conduct threat modeling and architecture reviews within the Managed Services practice.
Responsibilities
- Perform manual penetration testing of APIs (REST and SOAP), Web Applications, Mobile applications, and thick client applications.
- Advance engagements through objective based testing approaches aligned to defined goals.
- Conduct threat modeling, assess application business logic, and perform architecture reviews.
- Demonstrate application testing capabilities in real time via demos to internal and external audiences.
- Work independently on penetration testing engagements with minimal oversight and guidance.
- Uphold integrity, professionalism, and a respectful, courteous work environment.
Requirements
- Minimum three years of recent experience in application penetration testing of APIs, web applications, or mobile applications.
- Bachelor's degree from an accredited college/university or equivalent industry experience.
- Ability to communicate reporting results with technical and non technical audiences and lead remediation conversations.
- Experience with Burp Suite Pro and other testing tools such as Netsparker and Checkmarx.
- One or more major ethical hacking certifications preferred but not required; GWAPT, CREST, OSWE, OSWA.
- Ability to travel as required.
- Authorized to work in the United States without the need for employment-based visa sponsorship now or in the future; no visa sponsorship is available.
Technologies
- Burp Suite Pro
- Netsparker
- Checkmarx
Benefits
- Medical and dental plans
- Vision coverage
- Disability insurance
- Life insurance
- 401(k) plans
- Personal well-being benefits
- Personal Time Off
- Holidays observed
Compensation
- Salary: USD 95,855 - 208,265 per year
Similar Jobs
J