Related skills
apis penetration testing threat modeling web security owasp top 10📋 Description
- Perform in-depth penetration tests across web apps, APIs, and infrastructure—going beyond automated tools to uncover meaningful flaws
- Develop clear, impactful PoCs that demonstrate real risk and help teams prioritize fixes effectively
- Collaborate closely with engineers to guide remediation and validate fixes through re-testing
- Contribute to threat modeling and design reviews, helping identify security gaps early in the SDLC
- Build and refine scripts, tools, and testing approaches to improve coverage and efficiency
🎯 Requirements
- 3–5+ years of hands-on experience in offensive security, penetration testing, or product security
- Strong understanding of common vulnerabilities (OWASP Top 10, SANS 25) and how they manifest in real systems
- Practical, hands-on mindset; comfortable testing, exploiting, and explaining vulnerabilities end-to-end
- Able to clearly communicate technical findings and recommended fixes to engineering teams
- Curious and persistent; you enjoy digging deeper, connecting dots, and understanding how things break
🎁 Benefits
- Hybrid working model with 25 extra days/year for remote work from a city of your choice
- Stock option plan included in a competitive compensation package
- OpenUP confidential coaching and mental health resources
- Unlimited access to Udemy online courses for ongoing learning
- 3 extra days off in 2026 to prioritise wellbeing
- Exclusive perks, rewards, and Bitpanda-branded merchandise; team events
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest — finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!