Security Engineer - Penetration Testing
Medellin
CaseWare
Caseware is the leading global software provider for CPAs, auditors, risk and governance professionals. Reach new levels of productivity and efficiency today.We are seeking an experienced Penetration tester to join our team. This individual is tasked with uncovering vulnerabilities across various systems and applications to safeguard against potential threats. This role spans a comprehensive array of environments, including desktop and cloud infrastructures, web applications, and containerized deployments. A strong grasp of security principles, testing methodologies, and the ability to marry manual and automated detection techniques are critical to the success of this role.
Key Responsibilities:
- Execute continuous tests across desktop, web applications, cloud environments, and container deployments, pinpointing vulnerabilities and security weaknesses.
- Collaborate with numerous teams to weave security testing into the fabric of Caseware
- Work with the organization to deploy mechanisms capable of proactive detection of risk to the organization.
- Maintain and stay up to date with new and emerging threats to Caseware.
- Conduct vulnerability assessments across the organization utilizing tools, tactics, and procedures indicative of both internal vulnerability programs, and external threats.
- Continually educate the organization to emerging threats and risks blending industry standards such as OWASP Top 10, with internal practices and patterns.
- Work with the organization to report on vulnerabilities and their associated remediation plans.
Qualifications and Skills:
- 3+ years of experience in a similar role
- Experience in penetration testing against cloud platforms, web applications, and workload security
- Experience running, operating, and reviewing SAST, DAST, RASP, tools
- Proficient with commercial and open source tools such as; OWASP ZAP, SonarQube, Github Advanced Security, CodeQL, Checkmarx, Metasploit, Burp Suite, among others.
- A keen understanding of DevOps practices and familiarity with infrastructure as code tools.
- Familiarity or previous experience with TypScript, Javascript,Go, C/C++,C#, Angular
- Expert with scripting languages such as Python, Bash, Powershell
- Familiarity with cloud native security tools and services
- Excellent verbal and written communication skills
Relevant Certification Experience:
- OSCP or GPEN, OSCE or other specializations a plus
- Cloud-specific certifications like AWS Certified Security - Specialty or Microsoft Certified: Azure Security Engineer Associate
Perks & Benefits:
- Contrato a termino Indefinido with all the legal benefits
- Prepaid Medicine
- Life insurance and funeral assistance
- Internet allowance
- Home office stipend
- Competitive compensation — above the market average
- 100% remote work environment and an excellent work-life balance
- Opportunity to work for a growing global SaaS leader company
- A culture that promotes independence, innovation, trust, and accountability
- Open space to be creative innovative and strategize for the future
- Mentorship by a highly experienced professional
- Budget for training: we want you to grow
- 5 Personal Time Off days per year
- Sick Leave Top up to a total of 100% of salary paid by the employer from Day 3 to 90.
Caseware's cutting-edge software products are meticulously designed for accounting firms, corporations, and governments. Our teams are continually collaborating, innovating, and building upon our existing suite of products. With a customer-focused mindset, we are building technology that is shaping what the future of audits, financial reporting, and financial data analytics will look like.
With a recent strategic investment from Hg Capital in 2020, Caseware is now in its next major growth phase as we double down on the people and products that have made Caseware so successful to date.
One of Caseware's core values is Many Voices, One Team and with that in mind, we're dedicated to building teams as diverse as our customers in an equitable and inclusive way. We welcome and encourage candidates of all backgrounds to apply. Should you require accommodations or have any questions at any point during the application or interview process, please e-mail our People Operations team at careers@caseware.com.
Any candidates successful in obtaining an offer for a position will need to successfully complete a background check through Certn.co which typically includes an Identity Verification and Criminal Record Check. Executives and Senior Managers will undergo a Soft Credit Check as well.
#LI-Remote
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Audits AWS Azure Bash Burp Suite C Checkmarx Cloud CodeQL DAST Data Analytics DevOps FinTech GitHub GPEN JavaScript Metasploit Open Source OSCE OSCP OWASP Pentesting PowerShell Python SaaS SAST Scripting SonarQube Vulnerabilities
Perks/benefits: Career development Competitive pay Home office stipend
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs