Web Application Security Test Engineer (Seattle)

JD : • Deep understanding of different web application technologies, web protocols (HTTP, HTTPS, etc.), browser technologies, etc. • In depth domain understanding of application security in terms of Identity and Access Management (IAM), different authentication technologies (passwords, biometrics, OTP, digital certificates & PKI, device authentication, FIDO U2F/Passkeys, etc. • Proven expertise on different security testing tools (Proxy tools like Fiddler, Black box security testing tools like Burp, Static Security Code analysis tools, • Deep understanding of different application security vulnerabilities such as OWASP Top 10, SANS Top 25, CWE, attack patterns (CAPEC), etc. • Bachelor's Degree in Computer Science or equivalent experience. • Must be self-directed, able to work independently, as well as work in a team-oriented and fast paced environment Having exp auth pages - login pages - Biometric, 2nd or 3rd way of Verification Who have tested those pages Explain - Token Vulnerabilities , Detail in vulnerabilities - MFA -