Application Security Tester

Hello,We are called People More because we treat our employees with respect, but also because the projects we work on are for people and should be easy and pleasant to use. We are technological, but we look at the bigger picture :)People More has been in existence for over three years and is an offshoot of one of the country's oldest interactive agencies - Insignia. The company is made up of people with a huge client base in the country and abroad, for whom we build projects from scratch (UX, UI, frontend, backend, mobile) or in part. We work directly for our clients and also support our partners in their own solutions. This ensures a wide range of projects and the ability to change! We work with clients all over the world.For the project that we are working on with our foreign partner, we are looking for Application Security Tester.

Your duties will include:

• Testing and improving the security level of our products

• Conducting penetration tests and vulnerability assessments at the application level

• Analyzing, documenting, and tracking vulnerabilities

• Supporting and further developing topics in the field of Information Security (InfoSec)

• Further development and optimization of security testing methods, including both automated and manual tests

• Supporting the DevOps team in integrating best security practices into the CI/CD pipeline

Requirements that must be met:

• Experience in security testing and vulnerability assessment of web applications/APIs

• Good knowledge of modern web technologies (HTTP, TLS, REST, ...) and security techniques

• Practical experience with tools such as Burp Suite, OWASP ZAP and other industry-standard security tools

• Knowledge of security fundamentals and best practices (e.g., OWASP Top 10, OWASP ASVS) as well as a basic understanding of established security standards (e.g., ISO/IEC 27001/2)

• Strong analytical skills, including reporting and vulnerability tracking

• Experience in working with developers/DevOps engineers and strong communication skills

• Very good German and English

Nice to have:

• Experience with e-mobility sector products

• Completed training in IT security (BSc or higher)

• If no degree, professional experience in the mentioned areas

• Threat modeling experience in software development as part of DevSecOps practices

• Knowledge of software development (e.g. Java, Spring)

• AWS Cloud knowledge

• Certifications such as PJPT, CompTIA PenTest+, CEH, OSCP or comparable evidence that demonstrate in-depth knowledge in the field of application security testing

What we offer:

• We are open and honest and we solve problems instead of generating them.

• Maybe it’s obvious, but we really respect our employees and associates. We used to be software developers, too, and we appreciate that job!

• A small team

• An international working environment and international projects

• Private medical care

• Sports card

• Training courses

• Work that is 100% remote (unless you prefer another system)

We have an office in Krakow, but if you like to work remotely, that’s absolutely fine. Over the next few months, we plan to continue working this way. After that, you decide according to what you prefer. We are OK with fully remote work. For us, you can be located anywhere. :)

Why it’s a good idea to work with People More?

• If you are not satisfied with your work or your tasks, we’ll find a way out together!

• If you get bored, we will offer you a new product and new, fascinating tasks

• We will work on your brand together: you will get an opportunity to attend conferences, including as a speaker, and we will help you publish in recognized magazines and online

• We will facilitate your access to challenges that are usually difficult to get

• At any time, you can talk directly to the board of People More—we talk your language because the company’s founders are software developers and designers!

What does the recruitment process look like?

• A friendly remote initial interview

• A remote technical talk

• The decision to work together!