Job Details

Senior Security Assessment Specialist at Kaspersky Lab. Analysis of the security of internal and external company services. Salary is discussed during the interview. Location: Moscow.

• Analysis of the security of internal and external company services using the OWASP WSTG methodology (black/gray/white box testing); • Deployment, updating, testing of SAST and DAST tools necessary for conducting white box testing; • Participation in penetration testing and RedTeam projects as a web application security assessment specialist; • Preparation of recommendations (writing reports) for improving the security level based on the results of the work performed; • Research activities in the field of information security, development of personal and team competencies in the area of web application security assessment.

• Experience in practical web application security assessment (2+ years); • Proficiency in basic web application security assessment tools; • Working with exploits, their modification, and execution; • Knowledge and experience in applying security assessment methodologies (PTES, MITRE ATT&CK, OWASP); • Knowledge of systems and technologies used in the corporate environment and attacks on them; • Knowledge of network protocols and authentication and authorization protocols of various systems; • Ability to read and analyze source code in common programming languages; • Experience with various SAST and DAST solutions, including open-source ones; • Knowledge of scripting languages for automating work processes.