Junior Pentester

Software Secured is a leading Penetration Testing as a Service company, with a head office in beautiful Ottawa, Canada. We help software development teams get ahead of hackers using a suite of services and products.

Our team of pentesters is looking for a junior pentester to join the team and help us secure a few hundred more applications.

As a Junior Pentester at Software Secured, you will have the opportunity to help our clients secure their mission-critical applications. This includes performing security code review, web, mobile, and network security tests. Help clients with security design reviews, threat modeling, and remediation strategies.

The ideal candidate will be self-driven and take ownership of the quality of their own work as well as the team’s deliverables. The individual will be motivated and passionate about application security and take pride in spreading the word and helping developers write secure code. You will be a part of the local and global security community and care about pushing the status quo. He/she will also have an affinity for security best practices and vulnerability exploits.

What you get:

• Annual Salary: $70,000-$80,000
• Eligible for yearly profit sharing program bonuses
• Work from home schedule (up to 100% during COVID)
• Part of a fast-growing, exciting, and challenging environment.
• You will receive a budget for speaking at conferences and meetups.
• You will be mentored by and work closely with senior staff.
• You will receive time and a budget for training.
• You will be provided with perks such as company lunches on Thursdays.
• You will receive a great health benefits package.
• You will receive a free audible account
• You will receive a minimum of 3 weeks' vacation.
• Our famous AK Nitro Gaming Chair so you can pentest in style 🙂 A picture here.

What we are looking for:

• Share our core values (please see below).
• Experience performing application, mobile pentesting, or comparable experience doing independent research or bug bounties.
• If pentesting experience is limited an OSCP, OSWE, or GWAPT would go a long way to closing the gap.
• Demonstrated software development background in one or more of Python, .NET, Ruby, Java, Objective C/Swift.
• You have competed in CTFs (Capture The Flags).
• Expert with OWASP Top 10 and can explain them easily.
• Strong verbal and written communication skills.
• Demonstrated analytical and problem solving skills

Nice to have:

• Experience in adjacent security related roles e.g. Secure Development/Engineering, Security Operations/SOC/Blue Teaming, Incident Response, IT Security, etc.
• Experience or security certification in cloud technologies (AWS, Azure)
• Open-source contributions
• Public speaking experience
• Performing training in a professional capacity
• Teaching experience, preferably security or CS topics

What we care about

• Keeping it Secure: Software Secured’s mission and values are a part of everything we do. We care about how our clients can do what they do without having to worry about hackers disrupting their work.
• Curiosity and humility: We are dedicated to learning and constantly improving. We hire the best of the best, humility is the key to remain the best.
• Own it: our engineers work hard to improve the state of web application security. To get there, we need to own every project, every assessment, every challenge and every line of code.
• Dive Deep: hard problems require diving deep to understand the real cause of the problem, we are not afraid of diving deep to come up with the best solutions.
  Bold: we take huge risks so our clients can minimize theirs, taking risks is part of what we do daily so we ensure the highest impact of our solutions.