Junior Penetration Tester
Bratislava, SLOVAKIA IT development
Job description
We are looking for a motivated and dedicated Penetration tester / Ethical Hacker to join our team of cyber security experts in the Healthcare sector. This is a unique opportunity for a technical, hands-on person to grow with the business and play a pivotal role in the growth and leadership of the team.
Your responsibilities will be the following:
- Join penetration tests and security assessments on internal and external networks, Windows and Linux environments, cloud (AWS and Azure) architecture, IoT, healthcare devices, and more.
- Conduct scans, penetration tests and source code analysis of web applications
- Identify and exploit security vulnerabilities to demonstrate their impact on the environment and business.
- Join authorized hacking activities using real world attack techniques to obtain foothold on the system, pivot to other systems and networks and to exfiltrate data.
- Write comprehensive and accurate reports for both technical and executive audiences
What are we expecting?
Education
- Master's degree in Computer Science (or related field) or equivalent work experience in the relevant field.
Language
- English – advanced (B2)
Professional skills
- Ability to clearly communicate and present technical topics
- Good analytical and problem-solving skills
- Passion for learning new technologies
- Team player with ability to work independently
- Advanced interpersonal, verbal and written communications skills
- Ability to communicate and present technical and business topics
- Ability to multitask, manage time effectively and prioritize tasks
- Result oriented
- Self-motivated and creative
A beginner level of knowledge is required in the following areas:
- Port scanners, vulnerability scanners, exploitation frameworks.
- Networking and network protocols.
- Enumeration techniques.
- Web application manual and automatic testing (incl. OWASP, NIST ).
- Active Directory.
- Windows and Linux access controls and administration.
- Authentication and Authorization models.
- Cloud (Azure and AWS).
- High level understanding of the following concepts:
- Threat modeling and risk assessment.
- Web server administration.
- Penetration testing processes, procedures, legal agreements, and reporting requirements.
- Post exploitation techniques.
- Experience with databases (MS SQL, Oracle DB, PostgreSQL, MySQL).
Nice to have:
- Certifications such as, OSCP, OSCE, AWAE, CISCO CCNA, CISCO CCNP, CREST CRT, GIAC (GXPN, GWAPT, GPEN, GMOB).
- Bug hunting experience
- CVE
- Experience with SCRUM/KANBAN
- Experience with leading small teams
- LaTeX
Basic wage component (gross) and other rewards: starting from 1 800 EUR brutto /month + VAR*
*We are required by law to disclose basic wage component (minimum salary) for the advertised positions. We carefully consider your professional qualifications and experience in our compensation package and/or when offering you other positions.
Our goal is to pay our employee's fairly, with regard to the market situation and we are ready to welcome high-quality candidates in our team.
What do we offer:
- Variable and Christmas bonuses
- Additional pension plan Contributions
- Bridge days – free extra paid leave, usually 5 days a year
- Company Smartphone with option for personal use
- MultiSport Card
- 3 sick days (no doctor’s permit needed) per year
- In case of sick leave 100% salary reimbursement 20 days/ year, family care 10 days/ year
- Work how it suits you – from our New Office (Free Parking Included), possible Home Office
- Flexible Working Hours
- Yearly Flexible Benefit Budget
- Training program (ACCA, Language courses, IT and Automation training, soft skills trainings,…)
- Wellbeing program – Psychological, Legal and Financial Councelling
- Retention program (work anniversary, life anniversary, employee loans)