Careers | Penetration Tester

Penetration Tester

Sofia, Bulgaria

At AMATAS we hire talented people who flourish solving hard problems and give them opportunities to hone new skills, try new approaches, and grow in new directions. Our culture is at the heart of our success. We share a real passion for winning and put the customer at the center of everything we do. The penetration testing team has the opportunity to apply its creativity, business knowledge and technical skills daily using new and innovative tools/techniques in a collaborative environment.

Job Description:

The penetration tester will be responsible for performing hands-on penetration testing, security test planning, and vulnerability analysis; focusing primarily on manual exploitation of web applications, networks, and systems. The successful candidate will enjoy working in a dynamic, responsive, and collaborative environment and be dedicated to the success of customers. Experience and technical knowledge in system and network security, authentication and security protocols, applied cryptography, and web application security are essential. Must be able to work both independently and as a part of team testing efforts.

Skills and qualifications:

• Bachelor’s degree in a technical field (Computer Science, Information Systems, Information Systems Security) or equivalent background and experience
• Excellent English skills (written and verbal
• Offensive penetration testing experience as well as an ability to suggest countermeasures and defensive strategies
• Background and knowledge of general security concepts, such as defense-in-depth, MITRE ATT&CK framework and security architectures
• Familiar with developing proof-of-concept exploit examples to use within reports or live demonstrations
• Good knowledge of penetration testing methodologies and frameworks including Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP), PCI DSS Penetration Testing Guidance, National Institute of Standards and Technology (NIST) Special Publication SP800-115
• Ability to document and explain technical details in a concise, understandable manner
• Ability to manage and balance own time among multiple tasks
• Strong written and verbal communication skills
• Preferred certifications: OSCP, LPT Master, GPEN, GWAPT, GXPN, OSWE.

The following are not required but will be considered a plus:
• Knowledge and experience in development or scripting (Javascript, Python, Bash, PHP, C#, Java, Golang or other)
• Knowledge and experience in the field of reverse engineering, shellcode writing or forensics.

Job Responsibilities:

• Work closely with the team of penetration testers and conduct regular penetration tests with a focus on quality
• Participate in training programs and complete the requirements set by the project leader
• Document vulnerabilities, write complete reports in either English or Bulgarian (mostly English) following a specific structure
• Participate in meetings with customers when technical expertise is required
• Work and collaborate with our vendors and partners.

Benefits:

• Competitive remuneration package
• Additional health insurance• Corporate discount vouchers
• Custom learning paths and capability model
• Continuous mentoring by senior cybersecurity experts and the team lead
• Multiple certifications in the field of cybersecurity
• Internal trainings and dedicated time for self-studying

If you are excited about this opportunity and believe you have the qualifications we are looking for, we’d love to hear from you!

Scroll to Top