Penetration Tester (Mid/Senior)
Vilnius, Kaunas, Lithuania
Baltic Amadeus
Top-quality IT consulting and software engineering. Get IT services and solutions tightly rooted in security and a data-driven foundation. Contact us today!Company Description
Baltic Amadeus is one of the most modern employers in Lithuania and now we are looking for a Penetration Tester.
Baltic Amadeus Security team consisting of experienced, highly qualified, and certified security professionals, that are working in the security architecture domain (assessment, design) and penetration testing.
Job Description
- Performing penetration testing for web/mobile apps, APIs, and ICT infrastructure by using dedicated security tools (DAST, SAST, etc.) and manual testing, analyzing vulnerabilities identified by the vulnerability scanning tools
- Explaining security testing’s results to the clients in English and Lithuanian languages, developing vulnerability mitigation and remediation plans. Providing results by writing reports and giving presentations
- Working closely with the architects during technological due diligence assessments and information security assessments for different clients
- Taking role of an expert during the information security and penetration testing presales activities
- Planning, communicating, and coordinating penetration tests and security assessments for clients from e-commerce, fintech, finance, telecommunications, and many other industries
- Using, administering, maintaining, and troubleshooting various commercial security tools and applications within Linux and Windows
- Constant research about the relevant penetration testing/cybersecurity topics, having the “try harder” mindset and eagerness to constantly learn (about new tools, methodologies, emerging vulnerabilities).
Qualifications
- Knowledge of operating systems including Windows, and Linux
- Knowledge of networking basics (OSI model, ports, protocols)
- Knowledge of application, database, and Web server design and implementation
- Programming skills (ability to write scripts)
- Knowledge of public cloud (AWS, Azure, Google) services, technologies and architecture
- Knowledge of vulnerability assessment and penetration testing technologies
- Knowledge of OWASP resources and methodologies, CWE Top 25, ATT&CK matrix
- Knowledge of ISO27k, NIST frameworks, CIS Critical controls, and any other standard, is a plus
- Knowledge of Lithuanian and Europe Union legal acts regulating information security, cyber security and data protection
- Any security/networking certificate is a plus (CEH, OSCP, Security+, PenTest+, OSWE, etc.)
- Constant learning (participation in bug bounties, blog writing, or developing open-source tools)
- Fluent English (at least B2 level) and Lithuanian language skills
Additional Information
- Flexibility in choosing your working hours
- Ability to work from a different location – we have 3 offices (2 in Vilnius and 1 in Kaunas)
- Health insurance and free parking from the first day
- Internal workshops – share your knowledge or learn from others
- Guaranteed yearly training budget – 50% of your Net Monthly salary per year
- Work in a team of strong professionals – Tech Leads, Architects
- Innovative projects in different fields: banking, telecommunications, utilities, pharmaceuticals, etc.
- Salary from 2800 EUR (Gross).
We believe in diversity. Your race, religion, gender identity, nationality or age- it doesn’t matter. What we truly care about is You, everyone is welcome to join Baltic Amadeus.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: APIs AWS Azure Banking CEH Cloud DAST E-commerce Finance FinTech ISO 27000 Linux NIST NIST Frameworks OSCP OSWE OWASP Pentesting SAST Security assessment Vulnerabilities Windows
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Product Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Principal Security Engineer jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Cybersecurity Specialist jobs
- Open Chief Information Security Officer jobs
- Open Senior Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Ingénieur DevSecops H/F jobs
- Open Senior Cyber Security Specialist jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs
- Open IPS-related jobs