- Perform application security testing, including penetration testing, to identify vulnerabilities in applications and systems.
- Prepare and submit weekly progress reports on ongoing security testing activities.
- Create detailed penetration testing reports for each tested application or system, including findings, risk levels, and recommendations.
- Validate and verify security findings obtained from bug bounty platforms or external security sources.
- Conduct re -testing to ensure that vulnerabilities fixed by the development team have been properly resolved.
- Maintain structured documentation that includes:
- A list of applications/systems that have undergone penetration testing.
- A summary of security findings and their remediation status.
- Technical discussion notes and collaboration records with developers regarding security issues and solutions.
- Work closely with development and infrastructure teams to provide guidance on secure implementation and mitigation strategies.
- Ensure that security testing processes and documentation are consistently maintained and up to date.
Minimum Qualifications
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related discipline.
- At least 2 years of experience in application security, cybersecurity, or software development with exposure to secure coding practices.
- Solid understanding of OWASP Top 10 and common web and application security vulnerabilities.
- Hands -on experience using security tools such as SAST, DAST, SCA, WAF, and penetration testing tools.
- Good knowledge of application architectures, including web applications, API security, microservices, and cloud -based systems.
- Ability to read, understand, and review source code in languages such as Java, JavaScript, Python, or similar technologies.
- Strong analytical skills, attention to detail, and good communication skills for working with technical teams.
- Work location is based in Siloam Karawaci, Universitas Pelita Harapan building.
