Web Pentesting Automation Developer

About our Team

Samsung Electronics is deeply committed to ensuring the security of both its final products and internal applications. To verify the robustness of our security measures, we employ a range of testing methodologies, including black-box and white-box testing. As part of our ongoing efforts to enhance security, we conduct regular penetration testing on internal web applications and services.

We are currently seeking skilled security engineers with a strong programming background to help improve existing tools and develop new internal solutions for penetration testing. In particular, we are looking for engineers who can leverage their expertise in web application security and AI, combined with programming skills, to build cutting-edge AI-driven tools for web vulnerability discovery.

Role and Responsibilities

• Building state-of-the-art AI-driven tools for detecting vulnerabilities in web applications.

• Conducting penetration testing on Samsung’s internal products and services.

• Performing vulnerability scanning and risk assessments.

• Reviewing code and collaborating closely with developers to enhance security.

  
  

Skills and Qualifications

• Experience with LLMs and prompt engineering.

• 3+ years of experience in web application penetration testing.

• Very good command of Python programming language.

• Familiarity with security testing tools, including Burp Suite, OWASP ZAP, Nessus, Nmap, Kali Linux.

• Strong understanding of common vulnerability mechanisms from the OWASP Top 10.

Nice to have

• Experience with Python frameworks for building AI agents (e.g., Pydantic).

• Understanding of security in CI/CD pipelines and DevOps best practices.

• Knowledge of web application source code analysis techniques.

• Familiarity with static application security testing (SAST) tools such as Checkmarx, Semgrep or Synopsys Coverity.

• Knowledge of operating system internals, particularly the Linux kernel.

We offer

Team:

• Friendly working atmosphere

• Wide range of trainings 

• Opportunity to work in multiple projects

• Multidisciplinary and multicultural team 

• Working with the latest technologies on the market

• Monthly integration budget

• Possibility to attend local and foreign conferences

Equipment:

• PC workstation + 2 external monitors

• OS: Linux, Windows

Benefits:

• Private medical care (possibility to add family members for free)

• Multisport card

• Life insurance

• Lunch card

• A partial reimbursement of the cost of an English language course

• Possibility to learn Korean for free

• Variety of discounts (Samsung products, theaters, restaurants)

• Unlimited free access to Copernicus Science Center for you and your friends

• Possibility to test new Samsung products

Location:

• Office in Warsaw Spire near metro station

• Working in a hybrid model – 3 days from the office per week