View All Jobs 142162

Associate Security Testing Engineer

Lead web application security assessments from engagement to patch validation
Vila Nova de Gaia, Portugal
Junior
yesterday
Blip

Blip

A Portuguese online platform offering a wide range of services including web development, mobile apps, and software solutions.
2 Similar Jobs at Blip

Associate Security Testing Engineer

Blip is a leading tech company focused on software engineering solutions for sports entertainment. We operate at scale. As part of Flutter Entertainment, we play an essential role in the Group's goal of becoming the global leader in online sports betting and iGaming, developing innovative products and platforms for over 14 million monthly customers worldwide.

We are serious about Tech. We are problem-solvers with big ambitions, keeping a people-first mindset at the core of our work. We prioritize flexibility as we strive to deliver the best technological products and tackle the greatest industry challenges.

Recognizing that everyone brings their own strengths, backgrounds, and new perspectives, we empower you to be yourself. That uniqueness shapes the culture of belonging we are so proud of.

The Role:

The Cyber Security Team is a wide security team, with +100 people, covering a large spectrum of security areas of expertise. Its goal is to provide and ensure that proper security controls are protecting against risk across all businesses within the group. The successful candidate will be part of the Security Testing Team and will have the opportunity to use technical skills and knowledge to identify new vulnerabilities and contribute to Flutter overall security posture.

The Associate Security Testing Engineer acts as an enabler for the wider Security Team, and aims to ensure the adoption of security practices, detection of security vulnerabilities, and mitigations are acted upon the project lifecycle.

What You'll Be Doing:

You'll be performing penetration testing for internal components and third-party applications that are used by the company. The overall scope will be mainly web applications.

The role involves a collaborative approach in the engagement phase, where you'll be gathering all required information for the pentest and clearly defining the scope with the stakeholders. It also includes close collaboration with development and infrastructure teams, not only to ensure that the identified vulnerabilities are validated and understood, but also to test the provided patches against other attack vectors.

In sum, you'll be leading web applications security assessments, including the engagement phase, code review, penetration test, vulnerability reporting and tracking, patching recommendation, and continuous testing triage and support.

What You'll Bring:

  • Experience and technical skills to test and review code of applications developed internally and externally, in line with application security best practices, by tracing the execution flow through an application and identifying possible security vulnerabilities or areas of weakness;

  • Motivation and soft skills to proactively unblock pentest requirements, engaging with different stakeholders (technical and non-technical) including developers, product owners, and managers;

  • Experience and ability to elaborate self-explanatory penetration testing reports, with high quality level, capable of being clearly understood by teams that don't have security knowledge;

  • Wide security knowledge to provide recommendations to the development teams on how to fix/mitigate a security vulnerability on applications and systems;

  • Motivation and proactivity to keep up with the latest offensive techniques, promoting self-improvement of soft and technical skills.

We'd Like You To Master In:

  • Good written and verbal communication skills;

  • A team player, who strives to maximize team and departmental performance;

  • Resolves and/or escalates issues in a timely fashion;

  • Knowledge sharing and interest in expanding employees security knowledge and mindset;

  • Responsibility to own assumed commitments and work without close supervision.

This is what you should have. What do we have, you ask? Well...you can check our amazing perks & benefits right here!

So ... Are you in?

Equal opportunities

At Blip, we are committed to creating a diverse and inclusive workplace. We strongly encourage people from all backgrounds, ways of thinking, and working to apply. We are committed to including everyone regardless of their race, disability, age, gender identity, sexual orientation, and religion. Everyone brings different perspectives and experiences; you don't have to meet all the requirements listed to apply for this role.

If you need any adjustments to apply for the position and to ensure this role aligns with your needs, please send an email to accommodations@blip.pt. We will only respond to inquiries related to disabilities.

+ Show Original Job Post
Suggest a correction
























Associate Security Testing Engineer
Vila Nova de Gaia, Portugal
Engineering
Apply to job
About Blip
A Portuguese online platform offering a wide range of services including web development, mobile apps, and software solutions.