Description
Web Applications Penetration Tester - International Corporation - 12 Month + Contract - Excellent Rates
A fantastic opportunity has presented itself for a Senior Security Tester to work on a long term basis for an International Corporation in Brussels Belgium.
As a Senior Security Tester you will focus on testing and evaluating the security of web services. That will include creating and executing a security testing plan, reporting the found vulnerabilities and recommending how to fix them.
In general, the following activities are expected to be executed by the new team member
- Hands on security testing/reverse engineering (a.k.a. penetration testing)
- Development of helper security verification tools
- Performing security design reviews of Web applications and network/cloud deployments
- Security code reviews of Web applications and/or Web API
- Documentation of knowledge and findings in the form of guidelines, checklists and examples to be used by development teams exciting new project, please do not hesitate to apply for further information. exciting new project, please do not hesitate to apply for further information.
Profile;
The candidate needs to have the following profile/experience:
Deep knowledge of web technologies and vulnerabilities: HTML5, PHP, JavaScript, CSS, XML, JSON, jQuery, TomCat, etc
Extensive experience with pentesting Web Services
Experience with network and web scanning tools like Qualis, Nessus, Acunetix, or Appscan
Practical knowledge of OWASP
Good knowledge of network protocols and network protection techniques (Firewalls, filtering, other) and methods to attack them
Experience with Python, Java, and/or SQL
Experience with Shell Scripting
Excellent analytical skills and ability to think out of the box
Experience with both Linux and Windows OS
Experience with doing security reviews of architectures, designs and code with the purpose of finding security flaws and/or risk full coding approaches
Strong command of English
Excellent communication and writing skills
Experience in the following topics is desirableExperience with AWS EC2 and S3 services
Experience with OpenStack
Experience with reverse engineering tools and techniques
Cryptography (RSA, SHA-1, AES, )
The development group is international and the working language is English.
This is an excellent opportunity to become an integral member of an established corporation. If you would like to be part of this exciting new project, please do not hesitate to apply for further information.