Penetration Tester

Edenred is a pioneer, a tech leader and the everyday companion for people at work across the world.
Our 12,000 employees are committed to making the world of work a better place for all, one that is safer, more efficient and more user-friendly. At Edenred, our passion for customers, respect, imagination, simplicity and entrepreneurial spirit are our values. For anyone who needs to vibe in their professional life, we are the best place for you to work and grow.
The Edenred Digital Center (EDC) in Bucharest, Romania is Edenred Group's largest Digital hub for strategic #tech projects.

Required skills & profile

2 5 years of hands-on experience in IT security and/or network, or relevant experience.
Degree/Diploma in Computer-related discipline, or equivalent work experience.

Knowledge and Skills

Established experience in penetration testing execution, an OSCP certification is a plus
Strong curiosity, willingness to understand more about both technical and business aspects
Strong ability to both follow repeatable processes and innovate with new ones depending on the context of the test
Ability to work in an international context
Knowledge of Azure or equivalent cloud environment will be highly appreciated
Ability to communicate and work in a transversal manner with different IT teams, including IT Operations, IT Security & Developers.
Ability to communicate, explain technical topics to a wide variety of actors of different skill levels
Good level of organization, be able to prioritize task and re-prioritize constantly
Fluent spoken and written English.
​

Position SCOPE & Key Responsibilities

Reporting to the Head of Information Security Testing, the Penetration Tester would be responsible for performing security testing activities, including penetration tests.

The Penetration Tester will:

- Perform penetration tests on varying mission, including:
Carrying out kick-offs to understand both the technical and business context: architecture, technologies used, workflows, main business risks and security stakes
Perform both standard testing, and testing oriented to specific goals or attack! scenarios
Produce clear and concise reports, including findings and suggestions for remediation
- Co-construct the internal Pentest methodology and tooling
- Support the Business Units in the remediation of vulnerabilities
- Perform specific security testing activities

Validation of the efficiency of WAF rules (ability to bypass them, activation…)
Validation of the strength on internal policies and security mechanisms
Validation of the implementation of specific security recommendations designed by the Security Risk Analysts.
- Support the IT Security Testing Manager in the coordination and performance of all pentests performed by third-party companies, and help improve the process
- Assist in communicating the results of projects via written reports to management
- Support security teams in the design of guidelines
- Support the rest of the security team, both central and regional, for expertise questions related to application security and secure coding

Joining us means:

» Taking part in an ambitious corporate project
» Becoming part of a team that embraced the digitalization challenge and enjoys this transformation every day
» Living our values every day: passions for customers, respect, imagination, simplicity, entrepreneurial spirit.

Because:

» You will greatly contribute to build the project that will improve the customers’ experience on an international level
» You will get exposure to various global cultures and teams
» You will be working with the newest technologies to build a new platform from scratch
» We offer you a very pleasant working environment, in the heart of Bucharest
» We also have for you: meal tickets, holiday vouchers, health subscription, flexible hours, work from home, flexible benefits system, on-the-job training & e-learning platforms.

And we do not stop here!