Web Application Security Engineer

  • Job Ref: 5183
  • Location: MAdrid, Spain
  • Type: Permanent

Overview

Web Application Security Engineer

Your responsibilities will include:

• Perform penetration testing (Blackbox/grey box /white-box testing) and code reviews (manual/automated) of substantial web applications

• Manually generate proof of concepts for security vulnerabilities, prioritize the risk, present the results to the stakeholders and provide detailed remediation guidance

• Facilitate removal or remediation of vulnerabilities in collaboration with our broader engineering and operations teams

• Assist with the development of remediation recommendations for identified findings

• Document the scope of work, attack scenarios, findings and evidence in the report

• Create and maintain web application security documentation, policies and procedures.

Requirements

• Four years of information security and penetration testing work experience preferred

• An in-depth understanding of OWASP Top 10 is required.

• Have experience in Ethical Hacking - red-teaming, penetrating systems, writing reports on findings, collaborating with owners to update systems, etc.

• Extensive experience in manually identifying security vulnerabilities and in generating Proof Of Concepts

• Experience in describing security concepts to personnel of both technical and non-technical backgrounds

• Strong understanding of application frameworks and technologies including Software Development Life Cycle methodologies

• Testing web services (REST)

• Experience with testing applications run within AWS.

• Strong understanding of information security concepts

• Good verbal and written communication English skills required.

• Self-motivated, excellent time management, great interpersonal skills, capable of working independently or in a team, passionate.

• Information security certifications GWAPT, EWPTX, OSWE or any other information security related certifications preferred.

Virginia Dueñas, IT Recruitment Consultant - Your e-Frontiers consultant for this job

Virginia is an IT Recruitment Consultant with e-Frontiers. She is part of the Permanent IT Recruitment Team in Madrid where she sources DevOps, SysAdmin, Data (Data Scientist, Data Engineer, BI...) candidates for our clients. Virginia holds a degree in Pedagogy from Complutense University and a degree in Human Resources and Labor Relationship in Carlos III University. She loves her job, loves meeting and talking with people and growing personally.

Specialises in: DevOps, Security, Data