Pentester (Cybersecurity)

TL;DR

Junior Pentester (Cybersecurity): Performing security assessments to identify vulnerabilities and security flaws in web, API, and mobile applications with an accent on evaluating network communications and identifying weaknesses in storage, authentication, and cryptography. Focus on developing comprehensive security penetration reports and collaborating with internal teams and customers on challenging software configurations.

Location: Hybrid options near our hub location in Málaga, Spain.

Company

hirify.global is a leading multinational organization focused on ensuring safety in human interaction with technology and the environment, operating a Cybersecurity Hub responsible for product security evaluations.

What you will do

• Help ensure clients’ web applications, systems, and infrastructure are designed and implemented to the highest security standards.
• Perform penetration testing and security assessments for web applications, APIs, and mobile applications.
• Develop comprehensive and accurate security penetration reports.
• Collaborate directly with internal teams and customers to solve challenging software and system configurations.

Requirements

• At least 1 year of demonstrated experience in penetration testing.
• Bachelor's degree in Computer Science, Telecommunication, or equivalent.
• Demonstrated hands-on experience with Linux.
• Ability to perform manual penetration testing techniques, including testing for vulnerabilities such as SQL Injection, Command Injection, and LFI.
• Knowledge of web application vulnerabilities and web application penetration testing tools like Burp Suite and OWASP ZAP.
• Familiarity with network penetration testing and tools like Nmap, Metasploit, Wireshark, FFUF.
• Proficiency in scripting languages (Python, Ruby, Perl, Bash).
• Fluent in English.

Nice to have

• OSCP, BSCP, CPTS, CBBH, EMAPT, or similar certifications.
• Knowledge of mobile application security testing, including static and dynamic analysis and reverse engineering of APK files.
• Familiarity with common mobile vulnerabilities (OWASP MAS Top 10) and tools like Frida, Jadx, ADB, MobSF.
• Participation in Bug Bounty programs, CTFs, or Hack The Box activities.
• Own research and presentations at congresses.

Culture & Benefits

• Permanent contract with hybrid work options near the Málaga hub.
• Flexible work model that allows work-life balance, including intensive summer days and every Friday off.
• Possibility of accessing restaurant vouchers, nursery vouchers, Wellhub, or transport benefits.
• Health Insurance 100% covered by the company.
• Opportunity to work with leading Top-Notch customers.
• Discounts on major brands and an Employee Recognition Programme (KUDOS Awards).
• Enjoy free coffee and healthy snacks in the offices.
• Access to language training, internal and external certification programs, exclusive cybersecurity events, and a vibrant learning culture.