Requirements
The Security Tester is responsible for ensuring the security and resilience of software applications and IT infrastructure by identifying and mitigating vulnerabilities.
This role combines secure coding practices with proactive penetration testing to protect systems from exploitation.
The ideal candidate will have a strong understanding of application security, threat modeling, and ethical hacking techniques.
Responsibilities
-Application Code Security
Review and analyze application source code to identify security flaws and recommend remediation strategies.
Collaborate with development teams to implement secure coding practices and design principles.
Conduct static and dynamic code analysis using automated tools and manual techniques.
Integrate security testing into CI/CD pipelines to ensure continuous validation of code integrity.
Develop and maintain secure coding guidelines and training materials for developers.
-Penetration Testing
Plan and execute penetration tests on applications, systems, and networks to uncover vulnerabilities.
Simulate real-world attack scenarios to assess the effectiveness of security controls.
Document findings, assess risk levels, and provide actionable recommendations.
Collaborate with stakeholders to prioritize remediation efforts and track resolution.
Stay current with emerging threats, tools, and techniques in offensive security.
Nice to have:
Bachelor's degree in Computer Science, Cybersecurity, or related field.
Proficiency with security testing tools (e.g., Burp Suite, OWASP ZAP, Nessus, Metasploit).
Strong understanding of OWASP Top 10, secure SDLC, and threat modeling.
Experience with programming languages (e.g., Java, Python, JavaScript) and code review.
Familiarity with cloud platforms and container security is a plus.
Required Languages
· English: Advanced (80–95%)
Location
· Colombia – Remote