Job Search
Podemos ayudarlo a desarrollar una carrera excepcional.
Senior security Engineer (Senior Penetration Tester) IRC186299
| Job: | IRC186299 |
| Location: | Poland |
| Designation: | Senior Test Engineer |
| Experience: | 3-5 years |
| Function: | Quality Assurance |
| Skills: | API Testing, Penetration Testing and Reporting, Pentesting |
| Work Model: | Remote |
Description:
We are seeking a highly motivated and talented Cloud Engineer to join our international team for an exciting project based in Italy. Our client is developing an innovative solution to help companies manage public transport efficiently and make cities more comfortable to live in. As part of our team, you will play a pivotal role in building the product from its initial stages and significantly impact the development process. This position offers the flexibility of remote work, allowing you to showcase your technical expertise from the comfort of your own home. We’d love to hear from you if you’re ready to take on new challenges and thrive in a remote working environment. Apply now to join our dynamic team and contribute to a groundbreaking project that will revolutionize public transport management and urban living.
Requirements:
Experience and Skills:
Strong written and verbal communication skills in the English language – used for all formal communication.
The ability of critical thinking to form and clearly articulate identified issues and their consequences.
Ability to comfortably hold a conversation on cyber security aspects with both technical and non-technical audiences.
Maintain a wide breadth of penetration testing and/or leadership management skills to a significant degree of depth.
Understand the business context/significance of technical penetration testing findings.
Consistently output superior quality of deliverables.
Ability to work independently or lead any size team of penetration testers.
Demonstrated ability to solve complex technical problems.
The ideal candidate for this position will have:
At least 3 years of prior demonstrable hands-on experience in penetration testing.
Solid understanding of the platform security models for iOS and Android platforms.
Excellent understanding of platform-specific security risks, common vulnerabilities for mobile applications, and common risks in financial applications.
Practical knowledge of penetration testing of widely understood infrastructure, web and mobile technologies using manual and automated testing methods.
Excellent TCP/IP knowledge and understanding of security implications/issues.
Strong web application testing experience.
Ability to explain security functionality from first principles.
Ability to adapt and apply information to new scenarios and technologies.
Strong understanding of the applied use of cryptography in application development.
Strong grasp of common technologies, protocols and architectures commonly used by mobile applications. (HTML, XML, JavaScript, JSON, REST, Micro-services etc.)
Experience with dynamic and static application security testing and associated tools.
Knowledge of enterprise application design & common security issues associated with it.
Advanced knowledge of common security analysis tools and testing techniques, especially for the mobile security space
Knowledge of security verification of mechanisms & technologies such as SSL, Pinning, Biometric Authentication, Out of Band Authentication, JWT, SAML, RASP, Oauth2 etc.
Good to have knowledge of Java and Appium.
Job Responsibilities:
Lead/perform and own the design and delivery of penetration tests across various technologies.
Work within virtual teams of security and technical specialists to ensure quality delivery of world-class security solutions to the business.
Lead penetration tests are designed to highlight and clearly articulate risk to the business in terms the business can understand.
Drive and lead penetration tests and resulting deliverables to aid in ensuring that the Bank operates within defined risk appetite.
Represent Cybersecurity functions as a technical SME in internal and external discussions.
Help drive the maturity of the Cybersecurity function by continuously improving the quality of our services and removing inefficiencies, in line with wider Cybersecurity strategy.
Ensure compliance with internal audit and external regulators to ensure that any organizational changes are fit for purpose and meet their expectations.
Collaborate with relevant stakeholders to enhance the delivery of a Cybersecurity strategy to secure the technology, reputation and stakeholder value.
Provide supervision, guidance and mentor less experienced members of a team.
We Offer
Exciting Projects: With clients across all industries and sectors, we offer an opportunity to work on market-defining products using the latest technologies.
Collaborative Environment: You can expand your skills by collaborating with a diverse team of highly talented people in an open, laidback environment — or even abroad in one of our global centers or client facilities!
Work-Life Balance: GlobalLogic prioritizes work-life balance, which is why we offer flexible work schedules.
Professional Development: We develop paths suited to your individual talents through international knowledge exchanges and professional certification opportunities.
Excellent Benefits: We provide our employees with private medical care, sports facilities cards, group life insurance, travel insurance, relocation package, food subsidies and cultural activities.
Fun Perks: We want you to feel comfortable in your work, which is why we create good working environment with relax zones, host social and teambuilding activities and stock our kitchen with delicious teas and coffees!