Pen Tester
Cairo
Bosta is a rapidly growing tech startup redefining logistics and financing for e-commerce in the Middle East and Africa. We empower digital entrepreneurs with robust, end-to-end solutions that streamline trade, provide world-class logistics, and facilitate seamless business operations.Our engineering culture is centered around delivering exceptional user experiences and automating every internal operation—from Operations and CS to Accounting and Sales. As we scale, we lean on automation, data, and AI to move faster and innovate smarter.
Main Responsibilities:
- White Box Web Application Penetration Testing: Perform in-depth assessments of web applications using source code, architecture diagrams, and other internal documentation to identify vulnerabilities and security gaps.
- API Penetration Testing: Evaluate RESTful APIs for security flaws, including authorization, authentication, data exposure, business logic vulnerabilities, and protocol-specific threats.
- Threat Modeling & Risk Assessment: Analyze application designs and threat models to discover potential weaknesses before testing begins.
- Vulnerability Identification.
- Reporting & Communication: Clearly document findings, evidence, and remediation steps; present results to technical and non-technical stakeholders.
- Collaboration: Work hand-in-hand with development, DevOps, and infrastructure teams to design secure applications and validate remediation efforts.
- Security Best Practices: Stay up-to-date on the latest security trends, vulnerabilities, and exploitation techniques relevant to web and API environments.
Key Skills Required:
- Experience:2+ years in penetration testing, with a focus on mobile, web applications, and APIs.
- Hands-on experience with white box testing methodologies.
- Strong understanding of web application architectures, authentication, and authorization mechanisms.
- Familiarity with JavaScript, Python, Java, or other modern programming languages.
- Experience reading and analyzing source code to identify security issues.
- Proficiency with common penetration testing tools, Knowledge of secure coding standards and practices.
- Excellent problem-solving and analytical skills.
- Effective written and verbal communication.
- Strong attention to detail and ability to work both independently and as part of a team.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
8
3
0
Category:
PenTesting Jobs
Tags: APIs Automation DevOps E-commerce Java JavaScript Pentesting Python Risk assessment Vulnerabilities White box
Region:
Middle East
Country:
Egypt
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information System Security Officer jobsSenior Security Analyst jobsSystems Administrator jobsSenior Cybersecurity Engineer jobsSecurity Operations Engineer jobsSenior Cloud Security Engineer jobsSenior Information Security Analyst jobsCyber Security Specialist jobsInformation Security Manager jobsSenior Product Security Engineer jobsSecurity Consultant jobsSenior Network Security Engineer jobsInformation System Security Officer (ISSO) jobsSenior Cyber Security Engineer jobsSenior Information Security Engineer jobsChief Information Security Officer jobsSecurity Specialist jobsInformation Systems Security Engineer jobsCyber Threat Intelligence Analyst jobsIT Security Engineer jobsNetwork Engineer jobsSenior Software Engineer jobsSecurity Operations Analyst jobsCybersecurity Specialist jobsSenior IT Auditor jobs
Security assessment jobsGDPR jobsEDR jobsTS/SCI jobsEncryption jobsSDLC jobsThreat detection jobsSplunk jobsRMF jobsTerraform jobsMalware jobsCompTIA jobsIDS jobsSQL jobsITIL jobsIPS jobsFinance jobsOWASP jobsTop Secret jobsActive Directory jobsSOC 2 jobsDocker jobsForensics jobsGIAC jobsClearance Required jobs
OSCP jobsMITRE ATT&CK jobsDoDD 8570 jobsCRISC jobsHIPAA jobsIntrusion detection jobsTCP/IP jobsAnsible jobsVPN jobsZero Trust jobsSOAR jobsJavaScript jobsIT infrastructure jobsCCSP jobsData Analytics jobsUNIX jobsJira jobsDNS jobsIndustrial jobsBanking jobsNIST 800-53 jobsKPIs jobsSOX jobsSANS jobsCISO jobs