Cybersecurity Penetration Testing Engineer – Application & API Security Location: Charlotte, NC Experience: 10 years total About the Role We are seeking an experienced Penetration Testing Engineer specializing in Application and API Security to join our cybersecurity team. The ideal candidate will be a hands‑on offensive security professional skilled in identifying, exploiting, and reporting security vulnerabilities across web, mobile, and API platforms. Key Responsibilities Perform manual and automated penetration testing on web, mobile, and API endpoints. Use Burp Suite Professional extensively (Intruder, Repeater, Extender, Decoder). Identify and exploit authentication, authorization, session management, and input validation vulnerabilities. Conduct source code‑assisted testing to uncover deeper logic flaws. Apply frameworks such as OWASP Top 10, API Security Top 10, and SANS 25. Conduct REST and GraphQL API testing, including JWT, OAuth, and token manipulation. Validate business logic flaws, parameter tampering, and microservices vulnerabilities. Develop PoC exploits to demonstrate risk impact. Simulate real‑world attack scenarios leveraging MITRE ATT&CK and CWE references. Document detailed findings with reproduction steps, impact analysis, and mitigation recommendations. Collaborate with developers and DevSecOps teams to drive secure remediation and retesting. Present findings to both technical and non‑technical stakeholders in clear, actionable language. Integrate testing results into CI/CD pipelines and support DevSecOps automation. Contribute to secure coding guidelines and developer training. Stay current on emerging threats, CVEs, and offensive security tools. Develop custom scripts, payloads, or Burp extensions to enhance testing capabilities. Required Skills & Experience 10 years of total experience in Application and API Penetration Testing. Minimum 3 years of hands‑on offensive security testing experience. Expert‑level proficiency in Burp Suite Professional. Deep understanding of REST, GraphQL, JSON, and XML. Strong command of OWASP Top 10, API Top 10, and CWE Top 25 vulnerabilities. Experience using tools such as OWASP ZAP, Nmap, Metasploit, SQLmap, DirBuster, Hydra, and Ffuf. Excellent report writing and presentation skills. Preferred Skills Familiarity with API gateways (Kong, Apigee) and microservices architectures. Knowledge of Cloud Security (AWS, Azure, GCP) and Container Security (Docker, Kubernetes). Exposure to C2 frameworks (Cobalt Strike, Empire) and red team methodologies. Education & Certifications Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field. Preferred certifications: OSCP / OSWE / OSEP (Offensive Security); eWPTX / eCPPT / GWAPT / GPEN / CEH (Practical). Job Details Seniority level: Mid‑Senior level Employment type: Contract Job function: Information Technology Industries: Staffing and Recruiting Referrals increase your chances of interviewing at TalentOla by 2x. #J-18808-Ljbffr TalentOla
...Job Description: CDL A Driver Owner Operators Teams Dedicated CDL A TEAM OWNER OPERATORS $24,000 IN SIGN ON BONUS $24,000.00 SIGN ON BONUS FOR TEAMS ($12,000 Each) TEAMS EARN UP TO $575,000 PER YEAR J Boren and Sons Trucking...
...Lead Data Center Technician, youll take the lead as you collaborate with the Engineering, Raised Floor, and Central Plant teams. This includes:Installing and Maintaining Equipment Works closely with engineering team to ensure that new equipment is Maintenance Technician...
...Job Description Job Description Company Description As the leaves start to blow, let us help you bring in some extra dough... ...proof of auto insurance Additional Information All your information will be kept confidential according to EEO guidelines....
Now hiring Warehouse Picker Packers Aberdeen, MD Pay Rate: $17.00 per hour Shift: 7 AM - 5:30 PM, Sunday-Wednesday Hustle Hard, Get Paid Right Warehouse Picker Packer Needed Now! This warehouse job is built for go-getters. Sound like you? We are lo Warehouse, Packer, Picker...
...Posting Details Position Information Title Events and Program Coordinator Department Events and Campus Operations Regular or Temporary Regular Hours Per Week 40 FLSA Determination Exempt Weeks Per...