תיאור תפקיד:
We are seeking an Application Penetration Tester.
The role involves conducting penetration tests on various digital services and APIs to identify vulnerabilities and ensure adherence to best practices like OWASP Top 10. This requires a deep understanding of security architectures, REST, SOAP, GraphQL, and hands-on experience with penetration testing tools. The ideal candidate should be skilled in testing, reporting, and collaborating with development teams to mitigate risks and enhance overall API security.
דרישות:
* Proven experience in penetration testing, including cloud environments (AWS, Azure, GCP) and mobile applications.
* Strong understanding of web application security principles and common vulnerabilities (e.g., SQL injection, XSS, CSRF).
* Proficiency in using penetration testing tools and techniques.
* Knowledge of API security standards and best practices (e.g., OAuth2, JWT, OpenID Connect).
* Experience with scripting languages (e.g., Python, Bash) for custom exploit development.
* Familiarity with secure coding practices and defensive programming techniques.
* Understanding of software development methodologies (e.g., Agile, DevOps).
* Certifications (preferred but not mandatory): CEH, CISSP, OSCP.
היקף משרה:
משרה מלאה
קוד משרה:
JB-2863
אזור:
מרכז - תל אביב, פתח תקווה, רמת גן וגבעתיים, בקעת אונו וגבעת שמואל, חולון ובת-ים, מודיעין, שוהם
שרון - חדרה וזכרון יעקב, נתניה ועמק חפר, רעננה, כפר סבא והוד השרון, ראש העין, הרצליה ורמת השרון
השפלה - ראשון לציון ונס- ציונה, רמלה לוד, רחובות, יבנה
|