Добавено на 2 years ago
Security test engineer
Населено мястоOblast Varna, Bulgaria
Нивo на позициятаSpecialist
Дата на добавяне2022-01-10
ИндустрияIT and Telecommunications
Security test engineer
Our client is a global e-commerce agency headquartered in the US with top brands among their clients. Company centers in Eastern Europe are focused on the development of ecommerce solutions on Salesforce Commerce Cloud (Demandware), Hybris, IBM WebSphere Commerce, Intershop, Kibo, Magento, NetSuite.
They are looking for a Security Test Engineer who will be part of a high-performance Security test team responsible for the security testing of complex e-commerce solutions.
Job responsibilities:
- Collaborating with different project stakeholders to identify the Security Testing needs, scope, and inputs for the Security Testing approach
- Developing security testing strategy, create security test plans and scripts execution
- Performing security assessment for commercial and internal projects
- Participation in conference calls with clients to review assessment results and consult with the clients on remediation options
- Writing a formal security assessment report for each penetration test using our company's standard reporting format
- Performing security research on topics for department development
- Researching and maintaining proficiency in tools, techniques, countermeasures, and trends in web app vulnerabilities
- Assisting with security assessment and reporting methodology enhancements
- Retesting security vulnerabilities that have been fixed and republishing your report to indicate the results of retesting
You are the ideal candidate if you have:
- At least 1 year of experience in security/penetration testing, such as vulnerability analysis, manual and automated approaches for test execution
- Understanding of web application security (including but not limited to OWASP Top Ten)
- Experience with conducting different types of web application penetration testing, vulnerability assessments
- Experience in analysis of technical security weaknesses and to performs risk analyses
- Understanding and experience with OWASP main projects
- Knowledge of industry compliance standards and regulations (PCI, EU GDPR, etc)
- Extensive experience with the following tools: Burp Suite pro, ZAP, Nmap
- Experience with Commercial Web Application Tool
- Working experience with Kali Linux distributive
- Ability to use Common Vulnerability Scoring System
- Good understanding of: HTTP(S), HTML, CSS, AJAX, JavaScript
- Hands-on experience in scripting/coding in at least one of the following languages as Python, Ruby or Java
- Network penetration testing skills and software security fundamentals knowledge
- Experience in manual Penetration Testing(i.e. mapping applications, injecting SQLi, XSS)
- Very good English skills
Advantages:
- Experience in security/penetration testing of web-based applications and e-commerce solutions
- Experience with CI systems
- Experience with static analysis/review of source code for security flaws (manual and/or automated)
- Software Development and/or Scripting Experience in .NET/C++/ Java/ C#/ Perl/ Python/Bash
- Cyber Security Certifications
- Good technical writing skills and attention to detail
- Experience of work with Jira and Confluence
What they offer:
- Knowledgebase of the world’s largest ecommerce delivery team
- Trainings and certifications;
- A constant inflow of ecommerce projects with global outreach
- Coaching and reviews to support your career development
- Internal/external engineering and business trainings and conferences and time for self-education;
- Extensive technical library with option to order books and English classes
- Work-life balance approach and healthy lifestyle programs
If you recognize yourself in the description above, send us your CV in English today.
Only short-listed candidates will be contacted. All applications will be treated in strict confidentiality.
Последно преглеждани позиции
- Oblast Sofia, Bulgaria
- Staff
- Oblast Sofia, Bulgaria
- Specialist
- Oblast Burgas, Bulgaria
- Staff