Penetration Tester (Web Application)

ABOUT CLIENT

Our client is using new technology to develop products for the banking industry

JOB DESCRIPTION

Be skilled in conducting advanced manual application penetration tests.
Capable of developing tools and internal applications for discovering, assessing, and mitigating security vulnerabilities in both development and production stages.
Engage in design, source code review, and testing of new application security features and controls across various products.
Automate security penetration testing cases and ensure deployment in a production environment.
Advocate for secure development practices for software engineers.
Research and provide recommendations to the development team regarding security standards.
Continuously upgrade personal knowledge of information security to remain at the forefront of the field.

JOB REQUIREMENT

A bachelor's degree in Computer Science, Computer Engineering, Information Systems, or a related field, or 3+ years of equivalent work experience is required.
Familiarity with methods, processes, and procedures for conducting penetration testing.
Strong understanding of web application development.
Experience in reviewing source code (Java, Python) and mobile applications (Native, KMM).
Proficiency in cloud security (AWS).
Knowledge of web and mobile application security principles, including understanding of application security topics such as OWASP Top 10 and authentication infrastructure (SAML, OAUTH).
Experience in planning, coordinating, executing, and reporting security tasks.
Strong communication skills with the ability to explain complex technical issues to non-technical business users.
Possession of security-related certifications like GWAPT/ OSWE, etc. will be an advantage.

WHAT'S ON OFFER

Company offers meal and parking benefits.
Full benefits and probationary salary provided.
Insurance coverage as per Vietnamese labor law and premium health care for employees and their families.
Work environment is values-driven, international, and agile in nature.
Opportunities for overseas travel related to training and work.
Participation in internal Hackathons and company events such as team building, coffee runs, and blue card activities.
Additional benefits include a 13th-month salary and performance bonuses.
Employees receive 15 days of annual leave and 3 days of sick leave per year.
Work-life balance with a 40-hour workweek from Monday to Friday.

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666
We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Product

Technical Skills:

Security, AWS

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Hybrid

Job ID:

J00142

Status:

Active

Related Job:

Senior Information Security Officer (Security Control & Compliance)

Ho Chi Minh - Viet Nam

Product

  • Security

Responsible for implementing, operating, and monitoring application security controls and compliance activities to ensure that enterprise applications are secure, resilient, and compliant with internal policies and external regulatory requirements. #Key Responsibilities: Responsibilities and accountabilities Application Security Implement and operate application security solutions including WAF, DDoS protection, and PAM (Privileged Access Management). Monitor privileged access activities, detect abnormal behavior, and escalate security risks. Collaborate with development and infrastructure teams to ensure security-by-design across the application lifecycle (SDLC/DevSecOps). Support application vulnerability assessment activities and track remediation progress. Compliance & Policy Management Support the development, maintenance, and updates of information security policies and procedures. Ensure compliance with internal security standards and external regulatory requirements (e.g., audit requirements, SSC, Stock Exchange regulations if applicable). Prepare documentation and reports for internal and external audits. Security Monitoring & Reporting Monitor application-related security events and access activities. Analyze and report security risks, vulnerabilities, and incidents to management. Track remediation status of identified security issues and ensure timely resolution. Security Awareness & Training Support the execution of information security awareness programs for employees. Assist in developing training materials and communication related to application security best practices. Project Support & Implementation Participate in research, testing, and deployment of new application security solutions. Support security-related initiatives in digital transformation and system upgrade projects. Contribute to security requirement definition in IT and business projects.

Negotiation

View details

Database Expert

Ho Chi Minh - Viet Nam

Outsource, Product

  • DBA
  • Oracle
  • AWS

Oversee the health and maintenance of the database services to ensure optimal availability, reliability, integrity, security, performance, and backups and recovery plans. Implement disaster recovery protocols and measures to maintain database accessibility during system disruptions or failures. Provide database support to development teams. Participate in operational sessions with clients for real-time monitoring, issue resolution, and performance enhancement of production databases. Identify and resolve issues in both Production and Integration settings. Provide guidance and leadership to team members as needed. Engage in ongoing improvement efforts related to OCI Cloud, AWS, and MongoDB through transformation and architecture initiatives.

Negotiation

View details

Presales Consultant (Cloud)

Ho Chi Minh - Viet Nam

Outsource

  • Presale
  • AWS

Collaborate with sales teams to present solutions to customers. Deliver technical presentations, designs, POV, implementations, and troubleshooting for AWS projects in partnership with internal parties, vendors, and partners. Obtain necessary certifications. Create AWS solution designs encompassing AI/ML, analytics, containerization, and serverless architecture to ensure high availability, fault tolerance, and scalability. Take charge of MAP (Migration Acceleration Program) solution design across all MAP phases (Assess, Mobilize, Migrate/Modernize). Architect cost-effective and secure systems by implementing security best practices and ensuring compliance with frameworks like GDPR, HIPAA, or AWS Well-Architected Framework. Lead the development of well-structured solution and service offerings to facilitate rapid cloud solution adoption for customers. Lead the creation of standardized Statements of Work (SoWs), Standard Operating Procedures (SOPs), automation scripts, and common solution designs to streamline processes and enable scalability across projects. Collaborate with cloud engineers, sales, marketing, and the wider Westcon technical team across APAC. Promote cloud adoption among partners and customers by sharing best practices, insights, and cloud strategies. Engage in public speaking at Westcon and AWS events to demonstrate expertise and advocate for successful cloud solution implementation. Organize hands-on workshops, certification programs, and knowledge-sharing sessions to enhance partner expertise.

Negotiation

View details