Blaze Information Security is a cybersecurity consultancy firm headquartered in Berlin, Germany, with offices in Recife, Brazil, Porto, Portugal, and Kraków, Poland.
Established in 2016, we work with organizations in the United States, Europe and South America. We are strong believers in technical excellence and count on extensive experience in delivering complex projects for large customers from different industries.
Blaze is seeking an accomplished and versatile individual to join our cybersecurity assurance practice. The candidate will focus on penetration testing and specialize in network infrastructure and cloud security. The candidate is expected to deliver high-quality assessments and advise our customers on information security matters.
We are looking for individuals willing to work from our offices in Porto, Portugal, but remote in the European Union can be an option for the right candidate. Candidates must have the appropriate visas and work permits to work in the EU. No visa sponsorship is provided for this role.
Most of the team, including the company leadership, has a strong IT security background, so rest assured you will be dealing with people like you.
Responsibilities
- Perform penetration testing of a wide range of technologies, focusing on web application, APIs, mobile apps but also ability to
- pentest traditional network infrastructure and cloud, Kubernetes, CI/CD environments, etc.
- Participate in penetration test assessments either solo or as part of a team
- Create reports for technical and non-technical audiences, as well as effectively communicate findings to stakeholders
- Take an active part in pre-engagement activities (e.g., pre-sales, scoping)
Required technical skills
- Ability to perform penetration testing of APIs, web and mobile applications
- Good knowledge of AWS and Azure cloud security practices and penetration testing. GCP is a plus
- Familiarity with security analysis of Kubernetes, CI/CD environments and technologies related to cloud-native applications
- Skills in pentesting network environments based on Windows and Active Directory
- Evasion and bypass of EDRs, antivirus, and other endpoint security mechanisms
- Programming skills for scripting and automation
- Proficiency in Linux/Windows with comprehensive knowledge of Bash and PowerShell. Mac is a plus
- Knowledge of designing secure cloud architectures and conducting threat modeling
Professional requirements
- 3+ years of demonstrable professional experience in security consulting with a focus on penetration testing
- Excellent communication skills in English - Portuguese or Spanish are a plus
- Aptitude to explain technical and business risks in a clear and effective fashion
- Ability to travel internationally
Preferred qualifications
- Certifications such as OSCP, OSEP, OSWE, CRTO, CREST CRT or CCT, etc.
- Contribution to open-source security projects
- Active engagement with the information security community
- Proven track record of published IT security research
- A degree in computer science, computer engineering, information systems, mathematics or related areas
Contact
Applicants should send a resume to
[email protected]. Include "Penetration tester EU (mid level)" in the subject line. Please send your resume in TXT or PDF.
To learn more about the company, visit https://www.blazeinfosec.com and https://www.blazeinfosec.com/labs