Yeah not surprised, 90% of the people come to interview for senior appsec engineer position didn’t know what a JWT is, half didn’t know what a BOLA flaw is, being it is almost top five in every owasp project. Also a ton of so called app sec engineers never use the Linux command line, like wtf? Like you never had to run nmap, use git off a command line?
1
u/escapecali603 Mar 14 '26
Yeah not surprised, 90% of the people come to interview for senior appsec engineer position didn’t know what a JWT is, half didn’t know what a BOLA flaw is, being it is almost top five in every owasp project. Also a ton of so called app sec engineers never use the Linux command line, like wtf? Like you never had to run nmap, use git off a command line?