Join the Innovation at PrimeBase!

ABOUT US

Welcome to PrimeBase, where innovation meets technology to transform ideas into reality! 

We are a forward-thinking software development company dedicated to crafting cutting-edge solutions that revolutionize industries and streamline operations.

At PrimeBase, we believe in the power of innovation to drive progress. Our team of skilled engineers, designers, and visionaries is passionate about creating user-centric software that empowers businesses to thrive in the digital age.

Location: Remote

Position: Cybersecurity Specialist

We are looking for a Cybersecurity Specialist to help safeguard our company’s digital assets and infrastructure.

The ideal candidate will be responsible for conducting regular security scans, identifying vulnerabilities, implementing automation tools, and reporting findings to management.

Key Responsibilities:

• Effectively use and manage security scanning tools such as ZAP, Burp Suite, Nessus, or similar
• Perform regular security assessments on internal systems (web, servers, networks, applications, etc.)
• Conduct penetration testing on web applications, APIs (REST, GraphQL, SOAP) and internal services
• Identify and exploit vulnerabilities such as SQL Injection, XSS, CSRF, XXE, SSRF, authentication/authorization bypass techniques
• Perform source code reviews (manual code analysis) when required
• Automate and improve vulnerability scanning processes using scripting languages (Python, Bash, etc.)
• Analyze and report security vulnerabilities and risks with remediation recommendations
• Prepare weekly reports and presentations based on scan results
• Stay up to date on emerging threats, OWASP Top 10, SANS Top 25, and new security trends
• Actively participate in incident response and threat-hunting activities
• Integrate security checks (SAST, DAST, secret scanning) into CI/CD pipelines
• Perform log analysis, detect anomalies, and evaluate correlation rules using SIEM systems
• Contribute to Red Team operations when needed
• Ensure compliance with relevant standards such as PCI-DSS, ISO 27001, and other financial sector security expectations

Qualifications

• Bachelor’s degree in Computer Engineering, Software Engineering, Electrical & Electronics Engineering, Information Systems, or related fields (formal on-campus education)
• Master’s or PhD degree is a strong advantage
• Minimum 3 years of hands-on experience in cybersecurity, penetration testing, or related fields
• Experience in banking, fintech, or financial institutions is highly preferred
• Strong understanding of financial systems security requirements and sector regulations
• Web application penetration testing
• API security testing (REST, GraphQL, SOAP)
• Linux and Windows command-line environments
• Networking fundamentals
• Deep understanding of OWASP Top 10 and SANS Top 25
• Strong knowledge of modern attack vectors and exploitation techniques
• Experience with API security standards: OAuth 2.0, JWT, API Keys
• Familiarity with microservices security and containerized environments
• Hands-on experience working with CI/CD technologies (GitLab, Jenkins, GitHub Actions, etc.)
• Knowledge of MITRE ATT&CK framework
• Experience with EDR/XDR solutions (CrowdStrike, SentinelOne, Microsoft Defender ATP, etc.)

Preferred Qualifications (Nice to Have)

• Experience with SIEM/SOAR or other security monitoring and automation platforms
• Security certifications (CEH, OSCP, CompTIA Security+, etc.)
• Experience implementing security automation in large-scale infrastructures
• Experience with PHP programming
• Knowledge of Kubernetes and container security
• Familiarity with AWS security practices and services (IAM, VPC, S3, Security Groups, CloudTrail, GuardDuty, etc.)
• Experience in WAF (Web Application Firewall) management and security
• Understanding of IDS/IPS (Intrusion Detection and Prevention Systems)
• Hands-on experience with SOC (Security Operations Center) processes and monitoring tools
• Understanding of secure software development principles and practices
• Ability to take action against emerging threats using threat intelligence sources
• Experience in Red Team / Blue Team operations.

Soft Skills:

• Strong documentation and reporting skills
• Excellent communication and teamwork abilities
• Ability to work independently in a fully remote environment
• Detail-oriented, responsible, and proactive
• Comfortable in a fast-paced environment with tight deadlines

Preferred Certifications (Strongly Valued)

Candidates holding any of the following Offensive Security certifications will be prioritized:

• OSCP – Offensive Security Certified Professional
• OSWE – Offensive Security Web Expert
• OSEP – Offensive Security Experienced Penetration Tester
• OSED – Offensive Security Exploit Developer
• OSWP – Offensive Security Wireless Professional