Main Responsibilities

• Help to conduct security reviews of application designs, source code, and third-party libraries;
• Support the team during application vulnerability assessments using both automated tools and manual testing techniques (e.g., SAST, DAST, SCA, penetration testing);
• Help maintain security tools, scripts, and processes to support secure development;
• Stay current with industry trends, zero-day vulnerabilities, and best practices in application security;
• Develop scripts and security automation tools to enhance application security testing processes;
• Support internal and external audits;

Core Requirements

• Experience in mobile/desktop application security assessment planning, testing, methodologies, and vulnerability reporting would be an advantage;
• Knowledge of secure coding practices;
• Basic knowledge in at least one low-level programming language (e.g. C, C++, Rust, Go);
• Familiarity with networking protocols such as TCP, UDP and the HTTP protocol;
• Bonus points for familiarity with debuggers (e.g. GDB, LLDB, WinDbg) and reverse engineering tools (e.g. Ghidra, IDA);
• Basic knowledge of memory corruption issues, buffer overflows and related vulnerability classes;
• Basic knowledge of common authentication and authorization protocols (OAuth, SAML, JWT, etc.);
• Ability to work with networking tools such as Wireshark and tcpdump;
• Ability to quickly assimilate new technologies and tools;
• Bonus points for community contributions like public CVEs, bug bounty recognition, open-source tools, blogs, etc.

Salary range

• Gross Salary: 2200-3200 EUR/month gross