SalaryPeak

Application Security Tester-SD

TOSS-EX PR PTE. LTD.
Singapore 3+ years Posted Mar 8, 2026

Salary Range

SGD 96,000 - SGD 102,000 /year

SGD 8,000 - SGD 8,500/month

Skills Required

Security Toolsdata-flow diagramsWeb ArchitectureIT knowledgePenetration TestingAdaptabilityAuthorizationPerformingPythonSecurity Assessment and TestingAuthenticationAutomationAPIBurp SuiteConducting

Job Description

Role Overview

The Application Security Tester is responsible for evaluating the security posture of applications—web, cloud, and APIs—by identifying vulnerabilities, misconfigurations, and insecure development practices. This role works closely with cybersecurity teams to ensure applications meet secure coding standards and compliance requirements.

Key Responsibilities

Security Testing & Assessment

  • Conduct static (SAST), dynamic (DAST), interactive (IAST), and API security testing across applications.
  • Perform manual penetration testing to uncover business logic flaws, privilege escalation paths, and advanced vulnerabilities not captured by automated tools.
  • Identify, exploit, and validate vulnerabilities based on industry standards such as OWASP Top 10, SANS CWE Top 25, and NIST.
  • Review and analyze results from automated security scanners and follow up with developers for remediation.
  • Provide guidance on secure coding practices, threat modeling, and risk mitigation.

Reporting & Documentation

  • Prepare clear and actionable vulnerability reports with risk ratings, exploitation steps, and recommended controls.
  • Track remediation progress and support root‑cause analysis with engineering teams.
  • Maintain documentation on testing methodologies, standards, and frameworks.

Required Skills & Qualifications

  • Strong knowledge of web application architecture, authentication, authorization, and data flows.
  • Expertise in security tools such as:

  • Burp Suite, OWASP ZAP, Postman, Nessus, Checkmarx, Veracode, Fortify, SonarQube

  • Hands-on experience with scripting or automation (Python, Bash, PowerShell, JavaScript).
  • Familiarity with cloud-native security (Azure) and API security testing.
  • Understanding of secure coding standards and common vulnerability patterns.

Preferred Qualifications

  • Industry certifications such as: OSCP, OSWE, GPEN, GWAPT, CEH, CSSLP.
  • Knowledge of container security (Docker, Kubernetes) and microservices architecture.

Soft Skills

  • Strong analytical and problem‑solving mindset.
  • Excellent communication skills for translating technical findings to non‑technical stakeholders.
  • Ability to work in fast-paced environments and manage multiple testing cycles.
Back to all jobs

About TOSS-EX PR PTE. LTD.

View company profile → More jobs at this company →

Similar Jobs

Automation Testing

TOSS-EX PR PTE. LTD.

SGD 60,000 - SGD 74,400/yr

Senior Program Engineer (Operations)

TOSS-EX PR PTE. LTD.

SGD 66,000 - SGD 69,600/yr

Program Engineer (Cybersecurity)

TOSS-EX PR PTE. LTD.

SGD 42,000 - SGD 50,400/yr

Senior Program Engineer

TOSS-EX PR PTE. LTD.

SGD 60,000 - SGD 72,000/yr

Junior Program Engineer

TOSS-EX PR PTE. LTD.

SGD 36,000 - SGD 45,600/yr
View all jobs →