Penetration Tester (Web Application)

ABOUT CLIENT

Our client is using new technology to develop products for the banking industry

JOB DESCRIPTION

Be skilled in conducting advanced manual application penetration tests.
Capable of developing tools and internal applications for discovering, assessing, and mitigating security vulnerabilities in both development and production stages.
Engage in design, source code review, and testing of new application security features and controls across various products.
Automate security penetration testing cases and ensure deployment in a production environment.
Advocate for secure development practices for software engineers.
Research and provide recommendations to the development team regarding security standards.
Continuously upgrade personal knowledge of information security to remain at the forefront of the field.

JOB REQUIREMENT

A bachelor's degree in Computer Science, Computer Engineering, Information Systems, or a related field, or 3+ years of equivalent work experience is required.
Familiarity with methods, processes, and procedures for conducting penetration testing.
Strong understanding of web application development.
Experience in reviewing source code (Java, Python) and mobile applications (Native, KMM).
Proficiency in cloud security (AWS).
Knowledge of web and mobile application security principles, including understanding of application security topics such as OWASP Top 10 and authentication infrastructure (SAML, OAUTH).
Experience in planning, coordinating, executing, and reporting security tasks.
Strong communication skills with the ability to explain complex technical issues to non-technical business users.
Possession of security-related certifications like GWAPT/ OSWE, etc. will be an advantage.

WHAT'S ON OFFER

Company offers meal and parking benefits.
Full benefits and probationary salary provided.
Insurance coverage as per Vietnamese labor law and premium health care for employees and their families.
Work environment is values-driven, international, and agile in nature.
Opportunities for overseas travel related to training and work.
Participation in internal Hackathons and company events such as team building, coffee runs, and blue card activities.
Additional benefits include a 13th-month salary and performance bonuses.
Employees receive 15 days of annual leave and 3 days of sick leave per year.
Work-life balance with a 40-hour workweek from Monday to Friday.

CONTACT

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666
We are PEGASI – IT Recruitment Consultancy in Vietnam. If you are looking for new opportunity for your career path, kindly visit our website www.pegasi.com.vn for your reference. Thank you!

Job Summary

Company Type:

Digital Bank, Product

Technical Skills:

Security, AWS

Location:

Ho Chi Minh - Viet Nam

Working Policy:

Hybrid

Salary:

$ 3,500 - $4,700

Job ID:

J00142

Status:

Close

Related Job:

Pentest Manager

Ha Noi - Viet Nam

Product

  • Pentest

Tham gia triển khai dịch vụ pentest cho khách hàng: tiếp nhận, xác định các yêu cầu, phạm vi, điều kiện đảm bảo của các dự án pentest được giao Bóc tách công việc theo quy trình pentest, phân chia cho các thành viên tham gia thực hiện dự án Hướng dẫn các pentester thực hiện kiểm tra đánh giá ATTT cho ứng dụng Kiểm soát chất lượng dịch vụ, tuân thủ quy trình, nguồn lực và thời gian triển khai cho các dự án được giao Là đầu mối kỹ thuật, làm việc với các bộ phận nội bộ VCS (AM, CSKH, PM) & Khách hàng để phối hợp giải quyết các vấn đề trong phạm vi cung cấp dịch vụ Nghiên cứu cải tiến quy trình, checklist, các kỹ thuật mới nhằm nâng cao chất lượng dịch vụ, năng suất lao động, giảm tỉ lệ sót lỗi Đảm bảo SLA theo hợp đồng đã ký với Khách hàng

Negotiation

View details

SOC Manager

Ho Chi Minh, Ha Noi - Viet Nam

Product

  • Security
  • System
  • Network

Quản lý, kiểm soát chất lượng các dịch vụ cung cấp cho Nhóm các khách hàng của công ty: dịch vụ Giám sát ATTT 24/7, Xử lý sự cố, Threat hunting, Threat intelligence… Quản lý mức độ trưởng thành ATTT: Đánh giá, tư vấn nâng cao mức độ trưởng thành ATTT Quản lý Rủi ro ATTT & Quản lý tiếp xúc mối đe dọa liên tục đối với hệ thống của KH Nhận diện và quản lý vấn đề ATTT của khách hàng trong quá trình vận hành giám sát và xử lý sự cố Đại diện TTGS làm việc với các bộ phận nội bộ VCS (Triển khai, phát triển giải pháp, PM, sale, pre-sale, AM, CSKH, …) & Khách hàng để phối hợp giải quyết các vấn đề trong phạm vi cung cấp dịch vụ Đảm bảo SLA theo hợp đồng đã ký với Khách hàng

Negotiation

View details

Senior DevOps Engineer

Ha Noi - Viet Nam

Financial services, Crypto

  • Devops
  • AWS

Develop, maintain, and manage tools to automate operational activities and improve engineering efficiency. This includes writing custom modules in Node.js or Golang for task management and system orchestration. Troubleshoot, diagnose, and resolve complex software and infrastructure issues, including debugging and modifying application code in Node.js and Golang environments. Update, track, and resolve technical issues in a timely manner. Recommend architectural enhancements and propose process improvements for scalability and reliability. Contribute to application development by intervening in existing modules or creating new ones to enhance system manageability, scalability, and performance. Evaluate and implement new technologies, frameworks, and vendor products to support business goals. Apply best-in-class security practices to safeguard critical systems and data. Ensure stability, reliability, and performance of production and non-production environments. Collaborate with engineering, QA, and product teams to align infrastructure with development needs. Participate in a 24/7 on-call rotation to support high-availability systems.

Negotiation

View details