Cybersecurity Vulnerability Analyst

We are seeking for an experienced Cybersecurity Vulnerability Analyst for a key client based in Luxembourg.

Main tasks:

• Preparation of custom scripts, integrations and automations.
• Drafting of playbooks, and technical documentation.
• Execution of Application Security Tests from start to finish, including:

1. Initial Coordination with the customer and Setup of the testing environment.
2. Execution of Penetration Testing on deployed Web and/or mobile applications.
3. Execution of Secure Code Review on source code of Web and/or mobile applications.
4. Drafting of the Security Testing report.
5. Presentation of the results to the customer, both at technical and management level.

• Development and maintenance of software, including automation, integration and exploits
• Interaction with relevant customer teams, and external stakeholders to ensure clear communication, alignment, and efficient collaboration.

Education:

• Bachelor’s degree in in an ICT-relevant field.

Minimum experience

• 7+ years of experience in conducting vulnerability assessment of web applications, including code review.
• 10+ years in Software Development in Python, .NET, and JAVA.

Specific Expertise:

• Strong experience in OWASP Testing Methodologies.
• Strong expertise in Corporate Application Security Testing tools: Fortify Software Security Centre, Sonatype LifeCycle, Portswigger Burp, Fortify SCA (static code analyzer), Veracode, Snyk.io, OWASP Dependency Check, Bamboo, Bitbucket.
• Strong experience in executing Web/Mobile Application secure code review and Web/Mobile Application pen testing.
• Ability to cope with fast-evolving technologies in Web Application Security.
• Advanced ability to develop custom script and craft 0-day exploits.
• Very good communication skills with both technical and non-technical audiences, ensuring accurate, business-relevant translation of technical findings and capability to write clear, structured technical documents
• Ability to participate in and lead technical meetings, ensuring objectives are achieved.

Languages:

• English at B2 Level.

Location:

• Luxembourg (On-site)