Penetration Tester

TL;DR

Penetration Tester: Uncovers weaknesses in software, web applications, and client-side components to drive meaningful security improvements. Focus on controlled penetration testing of hirify.global applications, cloud environments, and infrastructure, demonstrating exploitability and documenting risks and remediation steps.

Location: Remote, Brazil

Company

hirify.global automates the hardest parts of IT to deliver visibility, security, and control over all endpoints for more than 30,000 customers.

What you will do

• Perform controlled penetration testing of hirify.global applications, cloud environments, and infrastructure.
• Collaborate with Engineering to validate vulnerabilities and support secure design and remediation efforts.
• Develop custom tools or scripts to support penetration testing, automation, and exploit development.
• Monitor and triage bug bounty submissions, confirming valid findings and routing them to the appropriate teams.
• Create clear, comprehensive reports and presentations for both technical and executive stakeholders.
• Promote security awareness across the organization, contributing to policies, best practices, and ongoing security education.

Requirements

• 2+ years of hands-on penetration testing experience.
• 4+ years in a cybersecurity-related role.
• Strong understanding of security protocols, cryptography, authentication/authorization, and modern attack techniques.
• Proficiency with penetration testing tools such as Burp Suite, Caido, and related frameworks.
• Ability to develop custom testing tools or scripts (Java, Kotlin, C++, Python, or Go).
• Knowledge of security frameworks and methodologies such as OWASP, NIST, or BSIMM, threat modeling like STRIDE or DREAD, and system hardening standards including CIS and CSA.

Nice to have

• Security certifications such as OSCP and/or Security+, CISSP, CISM are a plus.
• Experience testing or exploiting cloud-native applications; understanding cloud security architecture is a plus.

Culture & Benefits

• Flexible working hours with home office options.
• Growth opportunities with one of the fastest-growing companies globally.
• Skills development through a renowned training platform.
• Competitive compensation.
• Collaboration with an amazing international workforce.