#XM79666 Type: Full time

Penetration Tester Engineer – Cyprus or Greece

The Role:

The security of our applications and infrastructure is paramount to the success of our business and the safety of our clients. We are looking for a Penetration Tester Engineer with a strong passion for security to join our growing team and help us secure our award-winning applications. The successful candidate will be working in a challenging, dynamic, and inspiring environment, collaborating with other IT professionals to ensure our applications are protected.

The main responsibilities of the position include:

• Conduct penetration testing activities for assessing the efficiency of the current cybersecurity measures on web and mobile applications using technical and non-technical skills.
• Perform technical security audits to discover configuration weaknesses that violate the applied security policies in critical infrastructure, middleware and cloud resources.
• Contribute to the development of tools, methodologies, and best practices for penetration testing.
• Support processes relevant to vulnerability management.
• Work closely with product and development teams in order to assist them in identifying business and technical security risks prior to the release of software products in production environments.
• Prepare comprehensive and clear reports detailing findings, risks and remediation strategies.
• Educate developers on application security risks and mitigation techniques.

Main requirements:

• BSc/MSc in Information Security or any other related field
• Minimum 2 years’ proven working experience in application security and penetration testing field
• Experience in security testing for web and mobile applications, cloud services and critical infrastructure
• Strong experience working closely with developers and product teams
• Understanding of frameworks and industry-leading practices such as OWASP ASVS and OSSTMM
• Willingness to research new security testing techniques and tradecraft
• Knowledge of high-profile critical security vulnerabilities, exploits and attack vectors as well as their mitigation techniques
• Experience in agile software development model and integration of security practices.
• Advantage if holding Application Security and Penetration Testing certifications such as: OSCP/+, OSEP, OSCE, OSWE, CEH (Practical).

Benefit from:

• Attractive remuneration package plus performance related reward
• Private health insurance
• Corporate pension fund
• Intellectually stimulating work environment
• Continuous personal development and international training opportunities

Type of employment: Full time

Location: Cyprus or Greece

Please visit our website www.xm.com/careers to submit your online application for this position.

All applications will be treated with strict confidentiality!