meta-pixel
Eminence Ways
Application Security Officer Eminence Ways
Apply Now Save Job
Back

Application Security Officer

  • Industry Other
  • Category Web & Application Development
  • Location Kathmandu, Nepal
  • Expiry date Apr 19, 2026 (7 days left)
Job Description

Job Position: Application Security Officer (Offensive Security)

Key Responsibilities

  • Conduct in-depth manual security assessments of web, mobile, and API applications (black box / grey box / authenticated testing)
  • Perform advanced penetration testing focusing on business logic flaws, authentication/authorization bypass, and vulnerability chaining
  • Identify, validate, and exploit vulnerabilities across modern architectures (REST APIs, microservices, cloud-based apps)
  • Use both manual techniques and automated tools to discover vulnerabilities beyond standard scanning coverage
  • Collaborate with developers and stakeholders to prioritize and remediate security issues effectively
  • Prepare high-quality technical reports with clear risk impact and actionable remediation steps
  • Support secure development practices and integrate security into SDLC
  • Stay current with emerging attack techniques, CVEs, and exploitation trends
  • Mentor junior testers and contribute to internal knowledge sharing and methodology improvement


Required Skills

  • 2+ years of hands-on experience in application security / penetration testing
  • Strong understanding of OWASP Top 10, but also beyond (IDOR, SSRF, deserialization, race conditions, logic flaws, etc.)
  • Deep experience with Burp Suite (Pro) including extensions, manual testing workflows, and request manipulation
  • Familiarity with tools such as Nmap, Metasploit, ffuf, nuclei, Wireshark, and custom scripts
  • Ability to perform manual testing without relying solely on automated scanners
  • Proficiency in at least one scripting language (Python preferred) for automation and exploitation
  • Good understanding of web technologies (HTTP, sessions, tokens, APIs, JWT, OAuth)
  • Basic understanding of cloud security concepts (AWS/Azure/GCP) is a plus
  • Strong analytical thinking and ability to break complex systems creatively
  • Good communication skills for reporting and client interaction
  • Experience with bug bounty platforms ( like HackerOne, Bugcrowd) or real-world vulnerability disclosures is a strong plus


Apply Now Save Job
Share:  
Related Jobs
Senior Dot Net Developer
Senior Dot Net Developer
OmnicomMediaGroup Nepal
Senior AI Engineer (Data-Focused)
Senior AI Engineer (Data-Focused)
Maitri Services
Python Developer
Python Developer
DFW IT Partner
Sales Development Officer (Tech Product Sales)
Sales Development Officer (Tech Product Sales)
Walkers Hive IT Professionals Pvt Ltd
Python Engineer (US Healthcare / API integration)
Python Engineer (US Healthcare / API integration)
Maitri Services
More Jobs
more jobs
Sr. MARKETING OFFICER (Lubricant Company)
Store-Procurement-Warehouse-Dispatch Vacancies in Nepal
more jobs
Sr. MARKETING OFFICER (Lubricant Company)
Nepal Samachar
more jobs
Sales Officers - Butwal & Narayanghat
ŠKODA Nepal
more jobs
Sales Officer - CATL EV Batteries & Spares (Field Sales)
Gogoro Nepal Nebula
more jobs
Corporate Sales Manager
Classic Tech

Download Our Mobile App

google-play
app-store