Related skills
python penetration testing oauth 2.0 jwt sastπ Description
- Own the application security program across the SDLC from design to deployment
- Conduct threat modeling on features and changes with actionable findings
- Own SAST/DAST/SCA toolchain deployment, tuning, and CI/CD integration
- Triage automated scanner output, delivering a risk-ranked backlog
- Conduct manual pen tests and security assessments of web apps and APIs
- Manage external pen testing and bug bounty program end-to-end
π― Requirements
- 3+ years in hands-on application security (pen tests or code reviews)
- Strong OWASP Top 10 proficiency; assess modern web apps and APIs
- Experience deploying and operating SAST/DAST/SCA tooling (Semgrep/Snyk/Burp)
- Ability to read/write Python/Go/TypeScript code for reviews
- Experience with pen tests on web apps and REST/GraphQL APIs
- Solid understanding of OAuth 2.0, JWT, sessions, and RBAC
π Benefits
- Competitive salary and equity
- Unlimited PTO
- Full health, vision, and dental coverage
- 401k match
- Hardware setup: new MacBook Pro, big display, and accessories
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!