As a Senior Web Security Specialist at Goodfit, you will play a pivotal role in safeguarding our web applications and protecting sensitive user data. You will leverage your expertise in web security to identify vulnerabilities and implement strategies to mitigate risks while ensuring compliance with best practices. Key Responsibilities: - Conduct comprehensive security assessments and code reviews to proactively identify and address vulnerabilities such as Cross Site Scripting (XSS) and CORS issues. - Develop and implement security policies and procedures that adhere to industry standards, ensuring our web applications remain secure against emerging threats. - Collaborate closely with development teams to educate and enforce secure coding practices, fostering a culture of security awareness within the organization. - Monitor and respond to security incidents, providing risk assessments and remediation strategies in a timely manner. - Stay updated on the latest trends in web security and contribute to the continuous improvement of our security posture. Requirements and Qualifications: - Proven experience (5+ years) in web security, particularly with a focus on Cross Site Scripting and CORS. - Strong knowledge of security protocols, web application vulnerabilities, and secure coding practices. - Proficiency in penetration testing tools and techniques, as well as familiarity with relevant security standards (OWASP, NIST). - Excellent analytical and problem-solving skills, with the ability to communicate complex security concepts to technical and non-technical stakeholders. - Relevant certifications such as CISSP, CEH, or equivalent are highly desirable.