Scope of Work:
1 . Conduct manual and automated penetration testing on authorized systems, including:
* Web applications
* APIs
* Mobile applications (Android / iOS, if applicable)
* Network and infrastructure components
* Cloud environments (AWS, Azure, GCP)
2 . Validate and verify security findings submitted through our bounty platform to confirm exploitability, impact, and severity.
3 . Perform re -test to confirm that identified vulnerabilities have been properly fixed.
4 . Prepare clear and actionable penetration testing reports, including technical details and remediation guidance.
5 . Communicate findings directly with development teams to support understanding and remediation efforts.
Qualification:
* Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field.
* Minimum 5 years of experience in application security, cybersecurity, or software development.
* Have Experience as IT Helpdesk/Support L2 minimum 1 years
* Strong understanding of OWASP Top 10 and common application vulnerabilities.
* Hands -on experience with security tools such as SAST, DAST, SCA, WAF, and penetration testing tools.
* Knowledge of application architecture (API security, web app security, microservices, cloud apps).
* Ability to read and review code in languages such as Java, JavaScript, Python, or others.
Jenis Pekerjaan: Kontrak
Panjang kontrak: 12 bulan
