Security Evaluator - Penetration Tester, Barcelona

Social network you want to login/join with:

Security Evaluator - Penetration Tester, Barcelona

Client: SGS

Location: Barcelona, Spain

Job Category: Other

EU work permit required: Yes

Job Views:

Posted:

Expiry Date: 26.03.2025

Job Description:

SGS Brightsight in Barcelona is looking for a Senior/Junior Software Penetration Tester. We are seeking a skilled and motivated professional to join our team as a Software Penetration Tester. As a Software Penetration Tester, you will be responsible for assessing the security posture of software applications, systems, and networks by identifying vulnerabilities and conducting ethical hacking activities. Your role will involve performing penetration tests, vulnerability assessments, and security audits to ensure the robustness and resilience of our software solutions. You will collaborate closely with development teams, provide actionable recommendations, and contribute to the enhancement of our overall security posture. The Software Penetration Tester will lead security assessment and evaluation projects, conduct tests and/or advise others on how to conduct tests to evaluate security vulnerabilities in software applications, IoT, and network devices. Depending on the candidate, the role may include responsibility for the test environment and test procedures. We are looking for a person with a fascination for IT security. You will join a multidisciplinary team to execute security evaluations on state-of-the-art products such as trusted execution environments, hypervisors, real-time operating systems, artificial intelligence, secure elements, network devices, key managers, and hardware security modules.

Responsibilities

1. Conduct comprehensive penetration tests on software applications, systems, and networks to identify security vulnerabilities and weaknesses.
2. Perform vulnerability assessments and security audits to evaluate the effectiveness of existing security controls.
3. Utilize a variety of penetration testing techniques, tools, and frameworks to identify, exploit, and mitigate vulnerabilities.
4. Collaborate with development teams to understand software architecture, design, and implementation details.
5. Conduct manual and automated testing of software applications to identify security flaws in any kind of software systems and platforms.
6. Analyze and interpret the results of penetration tests, providing detailed reports and actionable recommendations to stakeholders.
7. Collaborate with developers to remediate identified vulnerabilities and implement appropriate security measures.
8. Stay updated on the latest security threats, vulnerabilities, and countermeasures, and continuously enhance knowledge and skills in the field of penetration testing.
9. Participate in the development and improvement of secure coding practices, guidelines, and security testing methodologies.

Qualifications

Must:

1. You have a Bachelor's or Master's degree in a technical field of study (computer science, telecommunications, electronics, physics, mathematics).
2. You have strong analytical and problem-solving skills with attention to detail.
3. You can work effectively both independently and collaboratively in a team environment.
4. You have strong organizational skills with the ability to prioritize tasks and meet deadlines.
5. You have English language skills.
6. Solid understanding of security principles, cryptographic algorithms, and security protocols.
7. Knowledge/experience in ISO27001, Common Criteria, SESIP, PSA, CSA, LINCE, NESAS, PCI.
8. Knowledge/experience in Smartcards, HSM, ARM, cryptography, web, and networking technologies.
9. Experience in conducting security evaluations, vulnerability assessments, or penetration testing.