Experience with a scripting language (e.g. perl, python, PHP, ruby) and a programming language (e.g. JAVA, Objective C)
General understanding of AWS services (such as EC2, S3, KMS, RDS) and security best practices relevant to those services
Ability to explain basic networking concepts (routing, ACL, load balancers, SSL/TLS, TCP) in order to provide application architecture feedback
Background in web application development and/or code auditing strongly preferred
Strong verbal & written communication skills
Passion for discovering and researching new vulnerabilities and exploitation techniques and providing remediations
Strong knowledge of the OWASP Top 10 and CWE Top 25 vulnerabilities (such as XXE, XXS, SQLi, etc..)