• Performing penetration tests on networks, systems, applications, and cloud environments to identify vulnerabilities and security flaws.
• Participate in vulnerability assessments and assist in analyzing the security posture of systems and applications.
• Stay informed about the latest security threats, vulnerabilities, and attack vectors. Assist in research to identify new vulnerabilities and exploits.
• Participate in offensive security: plan and execute realistic offensive security exercises.
• Analysis, design, and development of automated security testing to perform offensive exercises.
• At least 1 year of experience in penetration testing, application-level vulnerability testing, and code-level security auditing.
• Experience with OWASP, static/dynamic analysis, and common security tools.
• Experience identifying security issues through SDLC.
• Experience programming in one or more of the following: Python, Golang, Java.
• Good knowledge of security: secure programming, access control, common security flaws, and security assessment.