Penetration Tester - Ethical Hacker | Web Applications | Senior - (80% Remote within Slovakia possible)

Job description, responsibilities and duties

We make it, you break it.

Are you tired from hacking the same app every single day for the past year? Come and join us in hunting vulnerabilities in highly dynamic environment.Hundreds of projects are waiting for you. Together we will shape cybersecurity for healthcare.

Your tasks will be the following:
• Hunting for web specific vulnerabilities
• Performing manual penetration test (blackbox/greybox/whitebox type)
• Continuous analysis of threats and weaknesses to develop improved software security concepts
• Continuous improvement of know how in the field of application security
• Support and oversee the implementation of suggested counter-measures to ensure that cybersecurity is part of the ongoing process
• Support development teams with consultations on your findings
• Identify false positives from juniors within the team
• Cooperation and decision making across other penetration testing teams

What are we expecting?

Education
Master’s degree in Computer Science (or related field) or equivalent work experience

Professional skills:
• Web penetration testing related work experience 5+ years
• Understanding of web-app architecture
• Experienced in software development concepts
• Experienced with security frameworks OWASP, SANS, MITRE, OSSTMM
• Expert with using PortSwigger BurpSuite
• Expert in HTTP protocol, Oauth, SSO, JWT, HTML
• Expert in REST, JSON, WebServices, SOAP, XML
• Good understanding of Azure and AWS
• Good understanding of JavaScript debugging
• Good understanding of intrusion prevention and detection systems
• Ability to clearly communicate and present technical topics
• Ability to consult in technical and management-related matters
• Experience with threat modeling

Personality requirements and skills:
• Good analytical and problem-solving skills
• Good aptitude for learning new technologies
• Must be able to work in a team environment
• Advanced interpersonal and communications skills
• Good written and verbal communication skills
• Good organizational skills
• Result oriented
• Self-motivated
• Highly collaborative

Nice to have:
• OSCP/AWAE certified
• Bug hunting experience or related background
• Published CVE
• Experience with SCRUM/KANBAN
• Experience with leading small teams
• Experience with LaTeX

Basic wage component (gross) and other rewards : starting from 3000 EUR brutto /month + VAR*

Required education, skills and personality requirements

Required education
University education (Bachelor's degree)
University education (Master's degree)
Postgraduate (Doctorate)

Language skills

We offer

• Adjustable standing desk as a standard
• MSDN license for each developer with prepaid access to AZURE
• Free access to PLURALSIGHT – the WBT platform
• Team building program - 2 days adventure offsite meeting for all employees every year, Christmas party, extra budget for team building events
• Participation on world famous IT conferences like Microsoft IGNITE for best employees
• Wide project portfolio in healthcare domain and job rotation within company (Cybersecurity, Artificial Intelligence, Healthcare IT services, …)
• Training and development program (business and product trainings, e-learning, language courses, soft skills trainings,…)
• Health program (contracted wellness providers, sport centers, salary reimbursement in case of illness)
• Retention program (work anniversary, life anniversary, additional pension plan, employee loans)
• Family care program (subsidy for newborns, maternity leave, kindergardens, summer camps)