The Ukrainian IT company Nova Digital, which is part of the NOVA group of companies, is a powerful manufacturer of web applications and software for architectures of any complexity and load on them. We create, maintain and constantly improve software products, the convenience of which has already been appreciated by 32 million private and business clients of New Mail. We are expanding our team, so we are currently looking for a Penetration Tester< strong> What will you be doingConducting complex
The Ukrainian IT company Nova Digital, which is part of the NOVA group of companies, is a powerful manufacturer of web applications and software for architectures of any complexity and load on them. We create, maintain and constantly improve software products, the convenience of which has already been appreciated by 32 million private and business clients of New Mail. We are expanding our team, so we are currently looking for a Penetration Tester
< strong>
What will you be doing
- Conducting complex penetration tests of systems, networks, web and mobile applications to identify potential threats and their remediation
- Documentation of all identified issues using various reporting formats that include identified vulnerabilities, potential risks and recommended remediation steps
- Perform cyber attack simulations and determine the effectiveness of existing security measures< /li> incidents and ensure compliance of procedures with internal policies and external regulatory requirements
- Analyze the latest security threats, tools and methods to improve penetration testing
- Participate in incident response activities, contribute your expertise to effective and efficient mitigation/elimination of security incidents
- Development of tools and scripts to automate and improve current penetration testing processes
- Mentoring junior specialists, helping to develop their skills and knowledge, and also consultations in the field of penetration testing
About you
- Education: Higher education in the field of information security, information technology or related disciplines
- At least 3 years of experience as a Penetration Tester
- In-depth understanding of the principles of information security, network security and protection technologies
- Experience in security testing of iOS and Android applications based on various technologies (Objective C, Java)
- Experience in working with various vulnerability scanners and tools
- Understanding the security testing process of web applications (e.g. OWASP Web Security Testing Guide)
- Understanding of mobile security testing process (e.g. OWASP Mobile Security Testing Guide)
- Good understanding of TCP/IP protocol stack, encryption methods and their implementations, including symmetric and asymmetric cryptographic protocols and SSL/TLS protocols
- Experience writing PoC scripts (e.g. Python, Bash, PowerShell)
- Strong analytical skills to assess security vulnerabilities and effectively performing penetration tests
- Ability to communicate clearly and effectively with various levels of management and technical specialists
- Proficiency in English at an intermediate level or above
< p>
Will be an advantage
- Availability of eJPT, CEH, CPENT certificatesor equivalent
- Practical experience in penetration tests of AWS, GCP, Azure infrastructure
- Experience in Reverse Engineering
- Experience in participation in Bug Bounty programs
We offer
- Official employment
- Paid vacation
- Medical insurance
- Necessary equipment for work
- Corporate culture that motivates and charges with positivity
- Work in a socially responsible company that follows trends, appreciates the ideas of employees and develops together with him
Send your resume, let's get to know each other :) strong>