Remote Associate Staff Engineer - Penetration Testing

Posted

This job is closed

This job post is closed and the position is probably filled. Please do not apply.  Automatically closed by a robot after apply link was detected as broken.

Description:

  • The company is a Digital Product Engineering company that builds products, services, and experiences across all devices and digital mediums.
  • They are looking for an Associate Staff Engineer specializing in Penetration Testing.
  • The role involves performing security testing of applications and cloud environments.
  • The candidate must be able to articulate findings to internal stakeholders and think creatively to identify attack vectors.
  • The position requires 3-6 years of experience in application security testing of web, mobile applications, APIs, and infrastructure.
  • Knowledge of OWASP framework, Pen testing, red team exercises, and bug hunting is essential.
  • Scripting skills in Python, PowerShell, and JavaScript are required for writing automation scripts and PoCs.
  • A bachelor's degree in Computer Science or related field is preferred.
  • Security certifications like OSCP, OSWE, CCSP are a plus.
  • Experience in bug bounty hunting and vulnerability disclosure programs is advantageous.
  • The candidate should be proficient in security testing of web applications, APIs, mobile applications, and infrastructure.
  • Tools familiarity includes Burp Suite, Postman, VirtualBox, Kali Linux, Metasploit, Android Studio, Tenable, AWS, Azure, and GCP.

Requirements:

  • 3-6 years of experience in application security testing of web & mobile applications, APIs, and infrastructure.
  • Knowledge of OWASP framework, Pen testing, red team exercises, and bug hunting.
  • Hands-on experience with DAST/SAST/IAST solutions.
  • Proficiency in scripting languages like Python, PowerShell, and JavaScript.
  • Familiarity with SSO and OAuth 2.0 flows.
  • Bachelor's degree in Computer Science or related field.
  • Security certifications such as OSCP, OSWE, CCSP are a plus.
  • Experience in bug bounty hunting and vulnerability disclosure programs.
  • Ability to perform security testing on various components and environments.
  • Proficiency in using tools like Burp Suite, Postman, Kali Linux, Metasploit, etc.

Benefits:

  • Full-time position with the flexibility to work remotely.
  • Opportunity to work for a dynamic and non-hierarchical work culture.
  • Chance to be part of a global team of 15000+ experts across 26 countries.
  • Exposure to a wide range of digital product engineering projects.
  • Possibility to enhance skills in security testing and use cutting-edge tools and technologies.
About the job
Posted on
Job type
Full-time
Salary
-
Location requirements
Sri Lanka - Remote Asia - Remote
Position
Cybersecurity Engineer
Experience level
Senior
Technology stack
JavaScript AWS Azure GCP OAuth Python PowerShell
N
Nagarro's company logo
Nagarro
View company profile
Leave a feedback