— Ability to manually find and exploit basic web vulnerabilities
— Experience with various penetration testing tools (e.g. BurpSuite, Metasploit, OWASP ZAP) on Linux and Windows
— Experience with HTML, XML, JavaScript, CSS, SQL, and JSON
— Experience with one or more scripting languages: Python, Ruby, PHP, Bash, and Perl.
— Knowledge and understanding of Application Security, System and Network Security, Authentication and Security protocols
— Familiarity with OWASP Testing Guide, OWASP Top 10, WASC-TC
• fully paid sick leave and vacation days (20 working days per year);
• company-paid medical insurance;
• compensation of gym membership;
• compensation of the tax payments;
• company-paid English classes;
• recreation area equipped with pin-pong table and other amenities;
• incentives for the creative ideas.
-Vulnerabilities discovery in Manual and Automated ways as part of Penetration testing and Application Security reviews;
-Evaluation of security risks and recommendation of threat mitigations;
-Documentation of findings and reports presentation;
-Security trainings for internal QA and Development teams;