Junior Web Security Analyst

We are a team of international IT security professionals and ethical hackers with deep knowledge of application security and real curiosity of how things work. The Offensive Security team has more sub-teams, such as Vulnerability Management, PKI, Red Team and Penetration Testing. We are looking for a junior colleague who would join the Penetration Testing sub-team. You would be mainly testing web applications. We are offering a high degree of autonomy with appropriate level of support from senior colleagues. Your professional growth will be actively supported with opportunities to take part in domain-relevant training and conferences.

Your typical day will be about:

• Performing penetration tests of web applications

• Verification of responsible disclosure submissions

• Working on improvement of the Penetration Testing sub-team services

What do you need for this role?

Must haves:

• Interest in IT security and curiosity to learn more about this field

• Understanding of security principles and web technologies

• working experience in IT or finished university education in Computer Sciences (or for part-time job, undergoing university education in Computer Sciences or Engineering, preferably in security or web development)

Nice to haves:

• Experience with application penetration testing according to the OWASP ASVS standard

• Experience with developing web applications (preferably .NET languages, Java, and JavaScript)

• Certification from Offensive Security (OSCP)

Why join us?

• We support your development, there are quite a lot of "examples" in a team, when students moved to a higher position within few years.

• There is nice budget for training and certifications, as well as mentoring from senior colleagues

• International team – possibility to use English on daily bases

• New modern office in the Anděl, but also flexibility in working from home