— Identifying security vulnerabilities within running web-applications and services
— Strong knowledge of Information Security exploits and threats (OWASP Top 10, etc.)
— Experience with automated scanning and reporting tools like Burp Suite, OWASP ZAP and other similar tools
— Understanding of
— Knowledge of HTTP protocol, HTML/JS, SQL scripting; web authentication and authorization protocols like SAML, OAuth, OpenID
— Experience with wireless security, network monitoring, network design, windows desktop/server security, database security, routing protocols and incident management
— Familiar with scripting languages (like PowerShell, Bash, Python, etc.) and distributed version control systems (Git, Mercurial, etc.)
— Familiar with SDLC and project management tools (TFS, Jira, etc.)
— Familiar with Windows and Linux operating systems
— Passionate about data, security, technology, and challenging the status quo
— Understanding adversary tactics and ability to think like an attacker
— Having experience as a software developer
— Experience with AWS (Amazon Web Services)
— Competitive salary rates
— Friendly atmosphere and driven colleagues
— Comfortable work space, rest area, office cafeteria
— Paid vacations (20 working days) and sick leaves (5 days)
— Flexible working hours
— Twice a week team lunches
— Perform web application security audit (grey and black box testing) on regular basis; create security issues for vulnerabilities found
— Perform automated scans of web-services and provide reports
— Work closely with development team to help identify and mitigate vulnerabilities
— Perform knowledge sharing and trainings for development team
Caspio — американская продуктовая компания с
Решение Caspio подходит высокотехнологичным компаниям, которым необходимо создавать собственные многофункциональные приложения для оптимизации бизнес-процессов.
Caspio поддерживает свыше 1 000 000 приложений и более 5 000 клиентов в 110 странах мира. Среди них The New York Times, Philips, Reebok, Verizon и другие лидеры отраслей.