AppSec Engineer

Key Responsibilities:

• Perform static application security testing (SAST) and dynamic application security testing (DAST)
• Conduct penetration testing across web and mobile applications
• Execute thorough mobile application testing for Android and iOS, identifying security vulnerabilities and providing remediation guidance
• Conduct manual code reviews and identify flaws that automated tools may miss
• Collaborate with development and DevOps teams to integrate security best practices in SDLC
• Document security issues with detailed reports and provide actionable mitigation strategies
• Stay updated on the latest mobile threats, OWASP Top 10, and emerging AppSec practices

Required Skills & Qualifications:

• Strong hands-on experience in SAST, DAST, and manual penetration testing
• Expertise in mobile application testing on Android and iOS platforms
• Deep knowledge of application security principles and secure coding practices
• Familiarity with tools such as Burp Suite, OWASP ZAP, MobSF, and other mobile testing frameworks
• Ability to perform threat modeling and security assessments for mobile architectures
• Excellent verbal and written communication skills for reporting and collaboration
• Ability to work independently and manage tasks with minimal supervision