SUPPORTECH Inc., an Ontario — Canada based IT company, specializes in the highest quality outstaffing services with over 25 years of successful history providing services to a number of medium and large size international companies such as SUN Microsystems, Caspio, One Planet Ops, AXXYR medical systems, BWC and others. Since 2001 Supportech Inc.
20 августа 2019

Web Application Security Engineer (вакансия неактивна)


Необходимые навыки

— Identifying security vulnerabilities within running web-applications and services
— Strong knowledge of Information Security exploits and threats (OWASP Top 10, etc.)
— Experience with automated scanning and reporting tools like Burp Suite, OWASP ZAP and other similar tools
— Understanding of 3-tiered Web Application; basic understanding of networking and modern cloud architecture
— Knowledge of HTTP protocol, HTML/JS, SQL scripting; web authentication and authorization protocols like SAML, OAuth, OpenID
— Experience with wireless security, network monitoring, network design, windows desktop/server security, database security, routing protocols and incident management
— Familiar with scripting languages (like PowerShell, Bash, Python, etc.) and distributed version control systems (Git, Mercurial, etc.)
— Familiar with SDLC and project management tools (TFS, Jira, etc.)
— Familiar with Windows and Linux operating systems

Будет плюсом

— Passionate about data, security, technology, and challenging the status quo
— Understanding adversary tactics and ability to think like an attacker
— Having experience as a software developer
— Experience with AWS (Amazon Web Services)


— Competitive salary rates
— Friendly atmosphere and driven colleagues
— Comfortable work space, rest area, office cafeteria
— Paid vacations (20 working days) and sick leaves (5 days)
— Flexible working hours
— Twice a week team lunches


— Perform web application security audit (grey and black box testing) on regular basis; create security issues for vulnerabilities found
— Perform automated scans of web-services and provide reports
— Work closely with development team to help identify and mitigate vulnerabilities
— Perform knowledge sharing and trainings for development team

О проекте

Caspio — американская продуктовая компания с 19-летней историей и главным офисом в Кремниевой долине, первооткрыватель в сфере разработки облачных платформ.
Решение Caspio подходит высокотехнологичным компаниям, которым необходимо создавать собственные многофункциональные приложения для оптимизации бизнес-процессов.

Caspio поддерживает свыше 1 000 000 приложений и более 5 000 клиентов в 110 странах мира. Среди них The New York Times, Philips, Reebok, Verizon и другие лидеры отраслей.