Skip navigation EPAM

Senior Security Testing Engineer Budapest, Hungary or Remote

Senior Security Testing Engineer Description

Job #: 74400
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

No less important is the safety, well-being and experience of our applicants. Therefore, until further notice, all EPAM employment interviews will be conducted remotely. Our recruitment professionals and hiring managers are standing by to ensure a robust and engaging virtual candidate experience. We look forward to speaking with you!

DESCRIPTION


EPAM is looking for a Senior Security Testing Engineer to join the Security practice to work directly with our biggest enterprise customers.

• As Senior Security Testing engineer, you are required to have advanced technical expertise in security of Web or Mobile application or Infrastructure security.
• You will work independently being fully responsible for the results of the security assessment. Scope and tasks may vary depending on the project and customer needs.
• You will be engaged to perform penetration testing or vulnerability assessments of target system(s) in lawful and legitimate manner acting like an insider (internal penetration test) or external user.
• You may be involved in the full project security lifecycle from definition of security requirements till final security review and project closure.

Responsibilities

  • Develop security testing trainings to project team
  • Planning and team management specific to security assessment
  • Identify and implement relevant security specifications and standards
  • Define security requirements and security testing strategy
  • Define security tools and associated security checks
  • Scoping and estimating tasks, as well as managing multiple tasks with minimal supervision
  • Vulnerability assessments and penetration testing
  • Collaborate with technical and management personnel across the full security assessment life cycle
  • Document all disclosed issues using different reporting formats
  • Provide remediation suggestions to correct disclosed issues
  • Collaborate with personnel responsible for writing and presenting proposals to prospective clients

Requirements

  • 3+ years of proven practical experience in application or infrastructure security testing
  • Ability to perform evaluation of requirements, processes, technologies from security standpoint
  • Ability to select, educate and communicate the right solution based on client requirements and objectives
  • Ability to explain assessment results to technical and non-technical personnel
  • Understanding and practical experience in different security testing methodologies (OSSTM, OWASP, PTES)
  • Experience in development of security-related documentation
  • Experience in security assessments of Web Applications and Web Services (SOAP, RESTful) Or Experience in security assessments of Mobile applications (iOS, Android) Or Experience in assessments of network infrastructure
  • Experience in security assessments of Cloud applications
  • Ability to develop, implement and guide security assessments’ process on the project

Nice to have

  • Certifications in security field (OSCP, OSCE, WPTX, PTX, etc.)
  • Experience in Containers security assessments
  • Experience in IoT security assessments
  • Experience in creation of Threat Models and performing Security Risk Assessment

We offer

  • Dynamic, entrepreneurial, high speed, high growth corporate environment
  • Diverse multicultural, multi-functional, and multilingual work environment
  • Opportunities for personal and career growth in a progressive industry
  • Global scope, international projects
  • Widespread training and development opportunities
  • Unlimited access to LinkedIn learning solutions
  • Competitive salary and various benefits
  • Sport and social teams support, recreation area, advanced CSR programs

在亿磐成长

周剑
解决方案架构师
苏州

朱晓华
首席软件测试工程师
苏州

金秋
首席软件工程师
苏州

我们在世界其他地方。。。