Penetration Tester

The Penetration Tester will conduct security assessments across web, mobile, API, and network environments. This role focuses on identifying vulnerabilities, documenting findings, and working closely with development and security teams to remediate risks. The ideal candidate has a solid foundation in offensive security techniques and is eager to grow within a product-focused security team. 

• 2–4 years of experience in penetration testing or offensive security roles.

• Certifications preferred: OSWE, OSEP, OSCP, CAPE, CRTO or equivalent ones

• Knowledge of MITRE ATT&CK framework and Cyber Kill Chain.

• Understanding of container security basics and cloud environments. 

• Opportunity to learn through working
• Familiarity with a real banking environment
• Gaining practical knowledge and experience
• Development of communication and customer service skills
• Improving teamwork abilities
• Support from a professional mentor
• Chance to build a future career at Bir Ecosysem

• Conduct penetration tests on web applications, APIs, mobile applications, and network infrastructure.

• Document and report vulnerabilities with clear severity ratings, evidence, and remediation steps.

• Collaborate with development and DevOps teams to validate remediations and re-test fixes.

• Participate in security assessments and code reviews alongside senior team members.

• Support the integration of SAST / SCA / DAST tools and security scans within CI/CD pipelines.

• Stay current with emerging attack techniques, CVEs, and security research.

• Assist in threat modeling and design review sessions.

Kapital Bank iş mühiti, əlavə fürsətlər və digər vakansiyaları görüntüləmək üçün Kapital Bank Life səhifəsinə keçid edin.