All roles

Open role

Web Application Penetration Tester – Cybersecurity Remote

Remote · Brazil Full-time

Job Description:

  • Conduct penetration testing, ethical hacking, and security assessments on web applications, networks, cloud infrastructures (AWS, Azure, GCP), and enterprise IT environments.
  • Identify and exploit vulnerabilities such as SQL Injection (SQLi), Cross-Site Scripting (XSS), Server-Side Request Forgery (SSRF), Remote Code Execution (RCE), and Insecure Direct Object References (IDOR).
  • Perform network security assessments, including port scanning, vulnerability analysis, privilege escalation, and Active Directory (AD) security testing.
  • Utilize cybersecurity tools such as Burp Suite, Metasploit, Nmap, Wireshark, Nessus, Acunetix, Kali Linux, and BloodHound for in-depth security evaluations.
  • Develop and execute custom scripts, automation tools, or exploits for penetration testing scenarios.
  • Conduct post-exploitation analysis, privilege escalation, and persistence techniques.
  • Provide detailed security reports, risk assessments, remediation plans, and mitigation strategies to enhance security posture.
  • Stay updated on zero-day vulnerabilities, exploit development, cloud security threats, and emerging cyberattack techniques. Requirements:
  • Hands-on experience in penetration testing, web security, vulnerability assessments, and red teaming.
  • Strong understanding of ethical hacking methodologies including OSSTMM, OWASP Top 10, PTES, NIST, MITRE ATT&CK, and CIS Benchmarking.
  • Proficiency in web application security testing, cloud security (AWS, Azure, GCP), and API security.
  • Experience in network security, firewall evasion, social engineering, and Wi-Fi security testing.
  • Knowledge of reverse engineering, malware analysis, exploit development, and buffer overflow techniques is a plus.
  • Familiarity with Active Directory attacks, Kerberoasting, Pass-the-Hash, Mimikatz, BloodHound, and PowerShell Empire is highly desirable.
  • Proficiency in scripting/programming (Python, Bash, PowerShell, JavaScript, or C) for security automation and exploit development.
  • Relevant certifications such as OSCP, OSCE, OSEP, CRTP, CEH, GPEN, CISSP, eWPTX, or GXPN are highly preferred. Benefits: Apply To this Job

More open positions

Senior Web Application Penetration Tester

Work from home Full-time role

Entry Level Cyber Security Analyst | Remote $85...

Work from home Full-time role

CAPPS Security Analyst /Service Desk Support (Remote)

Work from home Full-time role

Security Analyst-IAM / IGA Administrator (Microsoft Entra)

Work from home Full-time role

Systems Analyst 3 (CAPPS Security Analyst) - SA 26-06679

Work from home Full-time role

Vice President – Client Services (Healthcare Market Research | New Business Lead)

Work from home Full-time role

AI Engineer (Part-time) Agentes de IA & Automatización

Work from home Full-time role

Senior Project Manager - BWR Owners' Group (BWROG)

Work from home Full-time role

[Remote] Senior Technical Project Manager

Work from home Full-time role

Product Manager - Portugal

Work from home Full-time role

Remote Legal Assistant; Entry Level – Training & Growth

Work from home Full-time role

Computer Science CTE Teacher

Work from home Full-time role

Freelance Animator - Remote Contract

Work from home Full-time role

Social Media Manager Remote

Work from home Full-time role

Remote Treasury Analyst: Cash & Financing Ops

Work from home Full-time role

Customer Service Specialist

Work from home Full-time role

Remote Part‑Time Online Customer Chat Support Specialist – No Experience Required – Join careerzynith’s Dynamic E‑Commerce Team

Work from home Full-time role

[Remote] Network Engineer

Work from home Full-time role

Sr. Analyst, Strategic Finance

Work from home Full-time role

Junior Content Writing Assistant (Remote)

Work from home Full-time role

[Hiring] Patient Care Coordinator I @CVS Health

Work from home Full-time role