Security Specialist
Prague, Czechia
Ataccama
Accelerate your organization’s business initiatives with trusted, high-quality, governed data.Not based in Prague? If you’re open to either remote cooperation or relocation, reach out to us anyway to find out what the options are. #LI-hybrid
Your challenge
- Focus on security for application scenarios and application deployments both in cloud & on-premise.
- Help us to identify potential vulnerabilities in our product architecture.
- Design, execute, and validate penetration tests.
- Keep learning and apply new knowledge in real world security scenarios.
Is this you?
- You have experience with web application penetration testing according to the OWASP ASVS standard and "out of the box" standard.
- You know at least one programming or scripting language on the level of writing proof-of-concepts, scripts for automatization or offensive security/pentesting tools - Python, Bash..
- You are strong in cloud security principles and technologies (Azure, AWS, ...)
- You have knowledge of attacks / malicious techniques (SQL Injection, CSRF, Clickjacking, XML external entity injection, etc.).
- You have knowledge of symmetric and asymmetric cryptography.
Skills and technologies
- OAuth, OIDC, SAML
- PKI, SSL / TLS, certificates
- LDAP, ActiveDirectory, federation
- SSO (including environments with reverse proxies)
- Security-related HTTP headers
- (X-Frame-Options, Content-Security-Policy, Strict-Transport-Security, etc.)
- Kerberos
Bonus knowledge
- Security oriented certification is an advantage (SANS, Offensive Security, eLearnSecurity and/or similar)
- SOC2, NIST Standards, CIS Benchmarks, ISO 27001, GDPR
- OWASP, ASVSv3, CVSSv3
- Spring Security, Keycloak
Perks & Benefits- Flexible working hours and unlimited home office- 5 weeks of vacation, 2 sick days, an additional personal day for each year you’re in the company- Personal & professional development, education (online language and other courses, conference tickets, a well-stocked office library)- Experienced team to support your professional growth- “Unlimited playground” (Room to adjust and expand your role, or switch teams based on your individual skills and interests).- Lucrative employee referral program- Modern hardware/equipment (laptop, mobile phone, headphones, office chair, desk, monitor for your home office)- 20/50 GB of mobile data to improve your home office work experience- Annual package of counseling sessions to support your mental health & well-being- FlexiPass/Multisport card, free entrance to the Prague Zoo and Botanical Garden- Employee appreciation gifts throughout the year- Relaxed work environment, offices in Karlín- Office bikes, skateboards, and electric scooters- Great coffee and refreshments in the kitchen
Tags: AWS Azure Bash Cloud Cryptography CSRF GDPR Governance ISO 27001 Kerberos LDAP NIST Offensive security OWASP Pentesting PKI Python SAML SANS Scripting SOC 2 SQL SQL injection SSO TLS Vulnerabilities XML
Perks/benefits: Career development Flex hours Flex vacation Gear Health care Relocation support Salary bonus Snacks / Drinks Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs