IT Security Specialist (red team)

Warszawa, Poznań, Wrocław, Kraków, Toruń, Poland

Applications have closed

Opis oferty pracy

What will you do in your job

  • You will be responsible for conducting penetration tests of Allegro applications, systems and infrastructure
  • Your tasks will include recommending areas that need to be verified and preparing technical attack scenarios
  • You will be responsible for creating reports after the tests, which will describe the risk level and recommendations for identified vulnerabilities
  • Together with the defensive team (blue), you will develop detection and prevention mechanisms for identified threats
  • You will support engineering teams in implementing solutions to mitigate the identified threats
  • You will be responsible for carrying out social engineering attacks on company employees in order to raise their cyber-awareness 

We are looking for people who

  • Are able to independently plan and carry out complex tasks
  • Have experience in conducting penetration tests, including tools and techniques used to identify weaknesses in IT systems
  • Have operational experience from working in “red” teams (preferred)
  • They are able to report the results of their work and translate the identified risk into a business context
  • Follow global standards and use them in practice, among others: OWASP, MITRE ATT&CK.
  • Have experience in effective cooperation between Red and Blue teams
  • Have experience in working in security teams working with the use of "agile" methodologies

What we offer

  • A hybrid work model that you will agree on with your leader and the team. We have well-located offices (with fully equipped kitchens and bicycle parking facilities) and excellent working tools (height-adjustable desks, interactive conference rooms)
  • Annual bonus up to 10% of the annual salary gross (depending on your annual assessment and the company's results)
  • A wide selection of fringe benefits in a cafeteria plan – you choose what you like (e.g. medical, sports or lunch packages, insurance, purchase vouchers)
  • English classes that we pay for related to the specific nature of your job
  • Laptop with m1 processor, 32GB RAM, SSD - a 16” or 14” MacBook Pro or corresponding Dell with Windows (if you don’t like Macs), two monitors and all other gadgets that you should need
  • Working in a team you can always count on — we have on board top-class specialists and experts in their areas of expertise
  • A high degree of autonomy in terms of organizing your team’s work; we encourage you to develop continuously and try out new things
  • Hackathons, team tourism, training budget and an internal educational platform, MindUp (including training courses on work organization, means of communications, motivation to work and various technologies and subject-matter issues)

Why is it worth working with us

  • As an active member of the Team, you will have a significant impact on the technical security of the largest Polish e-commerce
  • You will have an impact on the organization of the Team's work, we encourage you to constantly develop and try new things
  • You will get the opportunity to work with excellent security specialists and engineers https://allegro.tech/
  • Once a year you can take advantage of the opportunity to work in a different team (so-called team tourism)
  • You will become a participant (if you wish, also a speaker) during internal events such as Allegro Tech Meeting and/or during external meetings or meetups
  • We provide stable employment based on an employment contract

Send in your CV and see why it is #goodtobehere

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Agile E-commerce MITRE ATT&CK OWASP Red team Vulnerabilities Windows

Perks/benefits: Career development Gear Lunch / meals Salary bonus Team events

Region: Europe
Country: Poland
Job stats:  17  3  0
Category: PenTesting Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.