Senior Penetration Tester @ UiPath

[Nytro]

Salut, cautam un nou coleg. Avem nevoie de cineva care sa stie foarte bine (cu adevarat senior) partea de securitate web, dar sa aiba si experienta de architecture security reviews, Kubernetes / containers si ceva cloud. 

In plus e relevanta si partea de comunicare si interactiune cu oamenii. 

In principiu vrem sa fie din Bucuresti, nu stiu daca si Cluj e o posibilitate, dar pot intreba. 

 

Job description oficial: 

 

Your mission: You will develop and apply formal security-centric assessments against existing and in-development UiPath products. You might also participate in other activities such as architecture security reviews, training for development teams, or management of our bug bounty program. A successful Senior Penetration Tester at UiPath is a self-starter, with strong problem-solving skills. The ability to maneuver in a fast-paced environment is critical and handling ambiguity coupled with a deep grasp of various security threats. As a true owner of security in UiPath, great writing skills are needed, coupled with the ability to interact with stakeholders across multiple departments and teams. The Senior Penetration Tester acts as a mentor for technical peers and can transpose testing strategies and high-level non-technical language results.

This Is What You'll Do At UiPath

• • Penetration testing on products
  • Security testing of desktop applications (Windows)
  • Source code review (multiple programming languages)
  • Cloud security reviews (Azure)
  • Product architecture security reviews
  • Recommendation of threat mitigations
  • Security training and outreach to internal development teams
  • Security guidance documentation
  • Security tool development
  • Security metrics delivery and improvements
  • Assistance with recruiting activities
     

This Is What You'll Bring To Our Team

• • BS in Computer Science or related field, or equivalent work experience
  • Minimum of 7 years of experience with penetration testing at application and infrastructure layer
  • Minimum of 5 years of experience in working with developers, with personal skills in coding/scripting
  • Good understanding of security tools and techniques
  • Good knowledge of attacking services hosted in the cloud (Azure, AWS, GCP)
  • Good knowledge of threat modeling
  • Good knowledge of operating systems, network, and database security
  • Advanced knowledge and understanding of web application security
  • Experience writing POCs for discovered vulnerabilities
  • Experience with Kubernetes and containers
  • Experience using various penetration testing tools (i.e.: BurpSuite, Metasploit, etc.)
  • Experience using debuggers, disassemblers for reverse engineering (Ida)
  • Experience with Red Team exercises
  • Experience with multiple programming languages

 

Pentru aplicare: https://www.linkedin.com/jobs/view/2664874344/

 

Daca vreti imi puteti trimite PM cu CV-ul. 

De asemenea astept PM daca vreti sa stiti mai multe. 

 

PS: Cerintele sunt foarte stricte, vrem pe cineva care sa ne poata ajuta din prima zi cu proiectele.