Hi All,

Client:TCS

Job Summary:

We are seeking a skilled and detail-oriented Web Application Security and Penetration Testing Associate. This role involves identifying vulnerabilities in web applications, APIs, and related AWS infrastructure through manual and automated penetration testing techniques. The ideal candidate will have a strong understanding of web technologies, security principles, and ethical hacking methodologies.

Shape

Key Responsibilities:

Perform SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing)

Perform web application penetration tests to identify vulnerabilities such as SQL injection, XSS, CSRF, authentication flaws, and insecure configurations, etc.

Conduct manual and automated security assessments using industry-standard tools.

Analyze application architecture and source code for security weaknesses.

Prepare detailed reports outlining findings, risk ratings, and remediation recommendations.

Collaborate with development teams to validate fixes and improve secure coding practices.

Stay updated on latest security threats, exploits, and testing methodologies.

Support compliance efforts (e.g., OWASP Top 10)

Shape

Required Skills:

Strong knowledge of:

Web technologies (Angular, JAVA Spring boot, REST/ SOAP APIs)

Security frameworks (OWASP Top 10)

Networking fundamentals

Must have Hands-on experience with tools:

Burp Suite, Fortify DAST, SonarQube, Wireshark

Having hands-on knowledge on Kali Linux, Fortinet is good to have

Familiarity with secure coding practices and static/dynamic code analysis.

Ability to document and communicate technical findings to both technical and non-technical stakeholders.

Best Regards

--

Bhargav Akkula

Senior Account Manager

Purple Drive Technologies LLC

Certified Minority Business Enterprise (MBE)

Cell +1 732-200-2392

Mailto:[email protected]

Website: http://purpledrive.com