Job description:
- Performing penetration tests on networks, systems, applications, and cloud environments to identify vulnerabilities and security flaws.
- Participate in vulnerability assessments and assist in analyzing the security posture of systems and applications.
- Stay informed about the latest security threats, vulnerabilities, and attack vectors.
- Assist in research to identify new vulnerabilities and exploits.
- Participate in offensive security: plan and execute realistic offensive security exercises
- Analysis, design, and development of automated security testing to perform offensive exercises.
Qualifications:
- At least 1 year of experience in penetration testing, application-level vulnerability testing, and code-level security auditing.
- Experience with OWASP, static/dynamic analysis, and common security tools.
- Experience identifying security issues through SDLC
- Experience programming in one or more of the following: Python, Golang, Java
- Good knowledge of security: secure programming, access control, common security flaws, and security assessment.
- Good teamwork, critical thinking, and ability to learn fast
- Candidate preference (does not require all):
● Experience in building products and services for cybersecurity that served the customer.
● Experience in working with microservice projects(Docker, Kubernetes).
● Experience in working with Cloud Security.
● Experience in the area of security testing with DevOps
● Great expertise in system optimization/project participation, and a significant number of users.
● Great expertise in playing CTFs, CyberDefense, especially qualified CTFs: GoogleCTF, MastesCTF, ASCIS, WhiteHat