SERVICES RESOURCES COMPANY
MANAGED CYBER ASSESSMENT VIRTUAL CISO MANAGED DETECTION AND RESPONSE MANAGED IT OPERATIONS
NEWS & REPORTS
ABOUT US TECHNOLOGY PARTNERS PARTNER WITH US CAREERS CONTACT US

Penetration Tester

Sofia, Bulgaria
4/5/2021 12:00:00 AM date published

The penetration tester will be responsible for performing hands-on penetration testing, security test planning, and vulnerability analysis; focusing primarily on manual exploitation of web applications, networks, and systems. The successful candidate will enjoy working in a dynamic, responsive, and collaborative environment and be dedicated to the success of customers. Experience and technical knowledge in system and network security, authentication and security protocols, applied cryptography, and web application security are essential. Must be able to work both independently and as a part of team testing efforts.

Skills and qualifications

  • Bachelor’s degree in a technical field (Computer Science, Information Systems, Information Systems Security) or equivalent background and experience
  • Excellent English skills (written and verbal)
  • Offensive penetration testing experience as well as an ability to suggest countermeasures and defensive strategies
  • Background and knowledge of general security concepts, such as defense-in-depth, MITRE ATT&CK framework and security architectures
  • Familiar with developing proof-of-concept exploit examples to use within reports or live demonstrations
  • Good knowledge of penetration testing methodologies and frameworks including Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP), PCI DSS Penetration Testing Guidance, National Institute of Standards and Technology (NIST) Special Publication SP800-115
  • Ability to document and explain technical details in a concise, understandable manner
  • Ability to manage and balance own time among multiple tasks
  • Strong written and verbal communication skills
  • Preferred certifications: OSCP, LPT Master, GPEN, GWAPT, GXPN, OSWE

Bonus skills

The following are not required but will be considered a plus:

  • Knowledge and experience in development or scripting (Javascript, Python, Bash, PHP, C#, Java, Golang or other)
  • Knowledge and experience in the field of reverse engineering, shellcode writing or forensics

Job responsibilities

  • Work closely with the team of penetration testers and conduct regular penetration tests with a focus on quality
  • Participate in training programs and complete the requirements set by the project leader
  • Document vulnerabilities, write complete reports in either English or Bulgarian (mostly English) following a specific structure
  • Participate in meetings with customers when technical expertise is required
  • Work and collaborate with our vendors and partners

Benefits

  • Competitive remuneration package
  • Additional health insurance
  • Corporate discount vouchers
  • Continuous training programs
  • Certification in the field of cybersecurity