Samsung Research and Development Institute Ukraine (SR Ukraine) is one of the units of R&D infrastructure of Samsung Electronics.
12 вересня 2022

Penetration Tester (вакансія неактивна)

Київ, віддалено

Web vulnerability assessments and penetration testing of internal products:

• Black-box pen test of WEB services and server infrastructure
• Black-box/Grey-box security validation of cloud-based infrastructure
• Enterprise IT infra penetration testing

Major Requirements:
• BlackBox and WhiteBox WEB pen.testing and vulnerability assessment experience
• BlackBox pentest experience of AWS-based cloud infrastructures and services
• OWASP Top-10: understanding of common Web Application vulnerabilities
• DB: uderstanding of database operation (pref. PostgreSQL, MongoDB, MySQL, SQLite, MS SQL)
• Good technical English

Optional Requirements:
• Cryptography: understanding of crypto primitives and protocols (SSL/TLS, authentication & authorization protocols, crypto algs.)
• Strong understanding of REST, SOAP operation
• Pen.test experience of solutions hosted on popular cloud platforms (Alibaba, GCP, Azure)
• Toolset: hands-on experience with Burp, scripting (Python), assessment automation tools (fuzz, scan)
• Network security: understanding of WAF, CDN, IPS/IDS operation and weaknesses
• Understanding of Devices-to-Cloud Services assessment principles
• Understanding of OSINT tools and techniques

We offer:
• Competitive salary, its annual review and different bonuses
• Official employment (gig contract)
• 28 days of paid annual vacation
• Paid days off on Ukrainian official holidays
• Paid maternity / paternity, sick leaves
• International business trips
• Opportunity to become an inventor of international patents with paid bonuses
• Financial support for publishing research results and attending top tech conferences
• Medical & life insurance for employees and their children
• Convenient office location (Business Center ‘101 Tower’)
• Lunches’ compensation included to the salary
• Discounts for Samsung’s products and partners’ services
• Educational and self-developmental opportunities in software creation, applied domains, soft skills & leadership