top of page

Cyber Security Expert (ZSP09)

Budapest

full-time

Information

  • Start: ASAP
  • Period: long-term
  • Seniority: medior L2 - senior L2
  • Department: Digital Experiences
  • Team: Penetration Testing team
  • Remote: 1 Home, 4 Office
  • Location: Budapest, XIII.
  • Recruitment process: 1st - Abesse screening, 2nd - online Client's tech interview in Hungarian or English, 3rd - online team fit round in Hungarian or English, 4th - Candidate Background Check (1 month)

Task

  • Conduct comprehensive web application security assessments and penetration tests on a variety of web applications, APIs, and mobile applications to identify vulnerabilities such as SQL injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and business logic errors.
  • Utilize a combination of manual testing techniques along with automated security scanning tools (e.g., Burp Suite, OWASP ZAP, Nessus, Qualys) to thoroughly assess applications for security weaknesses.
  • Develop and execute test plans, scenarios, scripts, or procedures for web security testing, including both authenticated and unauthenticated testing, and segmented by user role.
  • Stay updated with the latest security threats, techniques, and tools; continuously enhance knowledge through research, and apply this to testing methodologies. 
  • Work closely with development and product teams to effectively communicate findings, provide clear, detailed, and actionable feedback, and recommend remediation strategies.
  • Conduct re-tests to validate the resolution of any identified vulnerabilities and ensure that patches or fixes have been implemented correctly.
  • Create detailed reports and documentation outlining the findings from penetration tests, including an executive summary that clearly communicates risk levels, technical details, evidence, and recommendations for mitigation in a format understandable by both technical and non-technical stakeholders.
  • Participate in security incident response activities and investigations as required, providing expert advice on containment, mitigation, and prevention strategies.
  • Contribute to the development and refinement of security testing methodologies and best practices within the organization.
  • Mentor and guide junior security analysts or testers, sharing knowledge and best practices in web application security and penetration testing.
  • Continuously monitor and assess new security tools, technologies, and practices for potential adoption to enhance the security testing framework.

Requirement

  • Min. 3 years relevant experience
  • English: min. B2, optimally C1
bottom of page