Penetration Tester

This job is no longer active!

View all jobs Evolve today active

View all jobs Penetration Tester active on

View all jobs Internet - eCommerce active on

View all jobs IT Hardware active on

View all jobs IT Software active on

Employer: Evolve today
  • Internet - eCommerce
  • IT Hardware
  • IT Software
  • Job type: full-time
    Job level: 1 - 5 years of experience
  • Updated at: 19.03.2018
    Short company description

    We are a complex company that offers consulting and recruitment services in the Human Resources area..

    Evolution in performance, professionalism, balance and satisfaction.

    We are your trustworthy partner that understands the markets continuous dynamic change and difficulties but also from our constant direct engagement with the companies we work with, and their employees.

    We speak the languages of those that have ambitions, motivation for success and are able to adapt, innovate, and evolve.

    As your devoted partner we identify the requirements and the necessities of your company and as well for your employees.


    Four our partner, a fast growing company with multiple software and infrastructure projects running in parallel, with great teams situated in Romania, France, Switzerland, Spain and the UK we are looking for a professional Penetration Tester to whom is given the opportunity to apply his/ her creativity, business knowledge, and technical skills on a daily basis using new and innovative tools/techniques in a collaborative environment.

    We will be thrilled if you`ll have an open mindset that enjoys working and sharing information with others. Also, a strong passion for IT Security, creativity, a curious mind and always wanting to push the limits, are all traits that we appreciate.

    Required traits and experience:

    Minimum 2 years of penetration testing experience or proven equivalent skills.
    Understand how computer/device networks work (TCP/UDP, NAT, Firewalls, Routers, switches, routing, server client communication, OSI layers).
    Understand how operating systems work: Linux (good knowledge), Windows (Intermediate), macOS (nice to have).
    Practical experience with web applications fuzz testing.
    Security oriented programming for exploit development/automation.
    Practical experience with Metasploit framework.
    Good knowledge of the main tools and frameworks integrated in Kali Linux.
    Knowledge of exploitation techniques.
    Any security certification is a “nice to have” but practical skills are the most important.
    Familiarity with OWASP testing methodology and secure coding best practices.
    Good understanding of Secure SDLC/SDL.
    Able to have technical and non-technical conversations in English.
    Ability to express highly technical information into plain English (executive overview, business feedback, presentations).
    Be able to write documents/emails in English, with proper grammar.
    Comfortable initiating and controlling conversations with new people.
    Able to create an individual’s profile and then use it to obtain information.
    Overall passion for security.


    What the role will involve:

    Monitor company’s information flow and enforce PCI DSS and GDPR ruleset.
    Plan penetration tests and estimate effort.
    Execute threat/attack modelling on company’s products.
    Perform penetration tests on company’s full infrastructure (web apps/cloud apps, bare-metal servers, VM’s, desktops, wireless/Ethernet networks).
    Create clear reports at the end of the penetration tests.
    Help improve the company’s overall security awareness through information sharing, presentations, communication with other teams (Dev, DevOps, HR, etc).
    Write PoC code for discovered vulnerabilities.
    Constantly research information security threats and solutions.

    Other info

    What we offer:

    Office Location: Aurel Vlaicu, near Promenada Mall
    Modern office environment with all the work and play amenities
    An amazing platform for learning and development.
    Free will in choosing testing technologies or developing new ones.
    Freedom to execute numerous Social Engineering scenarios.
    Flexible working schedule.