Since its foundation in 1925, the DEKRA promise has been to ensure the safety of human interaction with technology and the environment. The company currently employs around 48,000 people in more than 60 countries on all five continents.

We have a clear and ambitious vision of the future. The vision for our 100th birthday in 2025 is to see DEKRA as the global partner for a safe world.
 

Within our Cybersecurity Hub, we are responsible for performing product security evaluations for the most important manufacturers worldwide. 

As a Pentester Senior your main objective will be to perform security assessments to identify hidden risks, vulnerabilities, and security flaws in a variety of products, applications, and services — including mobile applications. This involves evaluating mobile platforms (iOS and Android), analyzing app behavior, inspecting network communications, and identifying weaknesses in areas such as storage, authentication, cryptography, and platform misuse.

What will be your responsibilities?
•    Help ensure our clients’ products are designed and implemented to the highest security standards.  
•    Perform penetration testing and security assessment for devices.  
•    Develop comprehensive and accurate security penetration reports.  
•    Work directly with the internal team and customers to solve challenging software and hardware problems.

What do we expect from you?
•    +3 years of demonstrated experience in penetration testing.
•    Computer Science, Telecommunication, or equivalent Bachelor's degree.
•    Demonstrated hands-on experience with Linux.
•    Ability to perform manual penetration testing techniques, including testing for vulnerabilities such as SQL Injection, Command Injection, Local File Inclusion (LFI)
•    Knowledge of web application vulnerabilities and web application penetration testing tools such as Burp Suite, OWASP ZAP, etc
•    Familiarity with network penetration testing and tools like Nmap, Metasploit, Wireshark, FFUF.
•    Proficiency in scripting languages (Python, Ruby, Perl, Bash)
•    Fluent in English.
•    Determined, passionate, and with a keen eye for detail.
•    Be keen to learn day to day.
•    Aptitude for teamwork in an international environment. 

Ideally, you’ll also have
•    OSCP, BSCP, CPTS, CBBH, EMAPT or similar
•    Knowledge of mobile application security testing: Static and dynamic analysis, Reverse engineering of APK files, familiarity with common mobile vulnerabilities (OWASP MAS Top 10).
•    Knowledge of mobile Pentesting Tools: Frida, Jadx, ADB, MobSF
•    Participation in Bug Bounty programs and CTFs, Hack the box, or similar activities. Happy to know your best achievements.
•    Own research and presentations at congresses will be positively valued.

What do we offer?

•    Permanent contract.
•    Hybrid and flexible work model that allows the conciliation between personal and work life.
•    Intensive summer day and every Friday of the year.
•    Possibility of accessing restaurant vouchers, nursery vouchers, private medical insurance, and Wellhub.
•    Healthy snacks and free coffee in our offices.
•    English lessons to increase your level if needed.
•    Our employees have an opportunity to develop a career plan with access to different certification programs (internal and external) as well as participate in cybersecurity events within the community and engage in a learning culture and more!
•    Work with leading Top-Notch customers.
•    Discounts on major brands: textiles, consumer goods, electronics, travel agencies.

Location:
•    Hybrid options near our Hub locations in Málaga. 

We offer you an excellent opportunity to grow and develop your career in a leading multinational organization. For more info about us or what we do, visit www.dekra.com.