Pentest, Web Application, OWASP Top 10
We're looking for a skilled Application Security Analyst to support one of our largest in-house clients.
Your new role
- Review code, app logic, and login systems to spot weaknesses and suggest practical fixes that follow secure development practices.
- Run penetration tests on websites, mobile apps, APIs, and infrastructure to find security flaws or misconfigurations, then share clear reports and guidance with tech teams.
- Handle security incidents from start to finish, including investigating the cause, reviewing what happened, and putting measures in place to prevent future issues.
- Carry out regular scans, threat modelling, and risk checks using standard security tools, and work with teams to make sure problems are fixed quickly.
What you'll need to succeed
- At least 2 years of experience in cybersecurity or related roles (e.g., Red Teaming, SOC, vulnerability management, incident response).
- Hands‑on skills with common testing tools like Burp Suite, Metasploit, Nmap, Nikto, OWASP ZAP, or custom scripts.
- Experience assessing the security of modern web apps and APIs.
- Strong understanding of OWASP Top 10, secure coding practices, and exploit development.
- Ability to communicate fluently in both English and Chinese
What you need to do now
If you fulfil all the qualifications mentioned above and have the drive to succeed, click apply below!
