Current vacancy
Security Engineer (Pentester / Application Security)
We are looking for a Middle Pentester / Application Security Engineer to focus on regular vulnerability scanning and penetration testing. You will be responsible for identifying and exploiting vulnerabilities, configuring and running scanners (SAST, DAST, SCA, Container/IaC Security), integrating security checks into CI/CD pipelines, and preparing detailed reports with PoCs.
Conditions
Full time
Full time
Required work experience
—
—
Location
Remote
Remote
Date
Responsibilities
- Penetration testing of web and API applications
- Manual testing and vulnerability exploitation
- Automated vulnerability scanning and CI/CD integration
- Preparing reports with PoCs and remediation recommendations
- Supporting AppSec processes and developer training
Requirements
- 3+ years of experience in Pentesting / Application Security
- Strong knowledge of OWASP Top 10 and API Top 10
- Hands-on experience with Burp Suite, OWASP ZAP, Nessus, Acunetix
- Experience with SAST, SCA, and CI/CD integration
- Coding skills in PHP, JS/TS, Java, or Go
- Understanding of REST, OAuth2, JWT
- Nice to have: mobile application pentesting, bug bounty/CTF participation, exploit development, Kubernetes.
- Fluent Russian.
We offer
- Remote work
- Flexible start of the day
- Paid leave of 21 days
Apply for the job
Send us your CV and we will contact you as soon as possible.