Senior Penetration Tester

About Atos

Atos is a global leader in digital transformation with 107,000 employees and annual revenue of over € 11 billion. European number one in cybersecurity, cloud and high performance computing, the Group provides tailored end-to-end solutions for all industries in 71 countries. A pioneer in decarbonization services and products, Atos is committed to a secure and decarbonized digital for its clients. Atos is a SE (Societas Europaea), listed on Euronext Paris and included in the CAC 40 ESG and Next 20 Paris Stock indexes.

The purpose of Atos is to help design the future of the information space. Its expertise and services support the development of knowledge, education, and research in a multicultural approach and contribute to the development of scientific and technological excellence. Across the world, the Group enables its customers and employees, and members of societies at large to live, work and develop sustainably, in a safe and secure information space.

Atos Bulgaria recently opened a new next-gen Security Operations Center (SOC) in Sofia!

The center is designed to rapidly identify and limit the impact of security incidents for large organizations globally via 24/7/365 threat monitoring, detection, and targeted response supported by innovative technology with Artificial Intelligence (AI) and Machine Learning (ML) – ultimately strengthening Atos’ powerful global SOC network. 

If you are interested in joining the European number one company in Cloud and Cybersecurity in this brand-new center and helping us build its capabilities to become a local powerhouse, we will be happy to hear from you!

Task area:

• Carrying out penetration tests

• Carrying out code reviews

• Creation of customer-specific development measures to eliminate identified weak points

• Reviewing architectural concepts and creation of design patterns

• Crafting security concepts

Qualifications:

• Knowledge of typical vulnerabilities in (web) applications (e.g. OWASP top 10)

• Experience with pen-testing tools (e.g. Sqlmap, Burp, ZAP, Nessus, Nmap, Acunetix, Wireshark, etc.) and methodologies in testing (e.g. OWASP WSTG, MSTG)

• Knowledge of software development, especially web applications and RichClients

• Experience with programming languages such as Java, Python, PHP, C/C++, C#

• Knowledge of ISO/IEC 27001 and BSI IT baseline protection

• Excellent command of English. German is a huge advantage

Nice to have:

• Experience with low-level shells (e.g. PowerShell, Bash, etc) and system tools

• Dedicated security certifications (e.g. CEH, OSCP, eWPTX, OSWE, etc.)

• Proven participation in hacking (CTF) contests (e.g. Try Hack Me, Hack The Box, etc)

What we offer:

• Working in a successful, international, and innovative security company

• Access to world-class training and certifications (e.g. Offensive Security, SANS/GIAC, CREST)

• Development opportunities in a wide variety of areas, for example, Red Teaming, Incident Response, IoT/Embedded System Security, IT Infrastructure Security, Cloud Security, Mobile Security, SAP Security, Reverse Engineering, Cryptography ...

• Exciting and multifaceted field of activity with experienced security experts

We are striving every day in every situation to be: Inclusive; Curious; Audacious; Responsible; United to reflect the Atos company values. If you see yourself also in these values, we would love to hear from you!

Here at Atos, we want all of our employees to feel valued, appreciated, and free to be who they are at work. Our employee lifecycle processes are designed to prevent discrimination against our people regardless of gender identity or expression, sexual orientation, religion, ethnicity, age, neurodiversity, disability status, citizenship, or any other aspect which makes them unique. Across the globe, we have created a variety of programs to embed our Atos culture of inclusivity, and work hard to ensure that all of our employees have an equal opportunity to contribute and feel that they are exactly where they belong.