Security Engineer (Pentester)

What will you be doing? 🤔

• Designing and conducting penetration tests to our internal and third-party applications, as well as coordinating remediation and mitigation activities.
• Developing our Application Security program by establishing and enforcing security best practices for our new and existing products, services and technical components.
• Working with both open source and commercial tooling to coordinate vulnerability assessments, maintaining an expert level understanding of attack vectors and emergent threats.
• Collaborating with our Security Incident Management efforts by helping develop alerting capabilities based on new threats and vulnerabilities.
• Partnering with Stuart internal teams to identify and implement technology or process improvements that help mature our security services.
• Structuring our Vulnerability Management program and pentesting activities by defining goals, launching roadmaps, establishing metrics and reporting results.
• 🌈 Adding to our amazing company culture

What do we need from you? 😎

• Bachelor degree in a computer science field OR relevant certification (OSCP, CEH, SANS, OSCE)
• 2+ years of experience conducting pentesting activities, with demonstrable experience in manual testing in addition to automated tools
• Demonstrable knowledge in web application penetration testing, under OWASP or equivalent framework
• Demonstrable knowledge in mobile application penetration testing (iOS & Android)
• Deep understanding of network architecture and protocols
• Deep understanding of operating systems (Linux is a must, Windows/Mac are nice to have)
• Hands-on experience with penetration testing and vulnerability detection tools (Burp Suite, ZAP, Metasploit, Nessus…)
• Good knowledge of at least one scripting language (Python, Bash, PowerShell…)
• Good understanding of API vulnerabilities
• Ability to effectively communicate findings and contextualize risks to technical and executive leadership
• Resourceful and creative thinker with strong analytical skills, able to leverage unconventional and innovative ideas to solve complex problems
• Fluency in English

Want to put a smile on our face?😉

• Source code analysis
• Experience with red team activities
• Reverse engineering
• Forensics
• Cryptography
• Cloud security (Mainly AWS but GCP and Azure are a plus)
• Experience responding to incidents

The stuff you wanna know 😉

• Work-life balance – work from home and flexible hours 🏡
• Option to work remotely anywhere in Spain 🇪🇸
• Ticket Restaurant by Edenred (€11 daily) 🥗
• Unlimited access to Udemy for all your learning and development needs 📚
• Stuart Academy with regular workshops, Stu-Classes, and Stu-Talks 🎓
• Stuart is putting Mental Health Awareness first! Wellness Allowance (€40 monthly) to use in any gym or sport class 🧘
• Private healthcare provided by Sanitas 🧑‍⚕️
• 2 volunteer days per year to have a positive impact on our communities and the environment
• Work-from-Abroad policy (enjoy 30 days per year working from anywhere!) 🏞
• Work in an international, dynamic and passionate environment with a company culture focused on learning and development 🎉