Summary

The Red Team actively searches for vulnerabilities in the environment, considering multiple scopes such as infrastructure, web applications, APIs, and business logic. They validate security controls in place, report and manage any vulnerabilities identified, and guarantee compliance by collecting evidence for the requirements for which the squad is accountable. 

What you'll do

• Play a significant role supporting the identification and management of risks and vulnerabilities across different aspects, with constant interaction with development squads; assisting in the execution of secure application and product development cycles;

• Ensure the health of the corporate environment by adhering to audit requirements (ISO 27001 and PCI DSS);

• Develop documentation and procedures;

Minimum Qualifications

• Experience with Web and API Application Penetration Testing; OWASP Top 10 Web Application and APIs Methodology;

• Experience with Linux OS/ Windows OS administration commands; Bash scripting;

• B2 English (Upper Intermediate);

Desirable Qualifications

• Python scripting;

• AWS Services knowledge;

• Kubernetes and Docker Penetration Testing Skills;

• Code reviewing skills;

• PCI DSS audit previous experience;

• OSCP Certification;

Core Benefits

• Remote work

• Flexible hours

• Gympass

• Meal & Food vouchers

• Remote work financial support

• Life Insurance

• Medical and Dental Assistance

• Employee child care benefit: daycare

• Vidalink partnership

• Day off (Birthday)

• Support for studying languages

• 50% off AWS and GCP certifications

Technologies that we apply in our day

• SAST

• SCA

• IaC Scans