Eviden, part of the Atos Group, with an annual revenue of circa € 5 billion, is a global leader in data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing, and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with 47,000 world-class talents, Eviden expands the possibilities of data and technology, now and for generations to come.
Join our dynamic Cybersecurity R&D Team and play a pivotal role in shaping the future of information and data security technologies. As a Penetration Testing Engineer, you will contribute to the design, development, and implementation of cutting-edge cybersecurity solutions across multiple vertical scenarios and technologies.
As part of the Cybersecurity R&D Team, you will be involved in the design, definition of system architectures, software development, prototype testing, and piloting of cybersecurity solutions.
In your daily work, you will apply your knowledge of information systems security to provide recommendations for improving the security of various solutions, including systems, networks, applications, and processes.
This may include activities such as: Scan systems and networks to identify vulnerabilities (using various vulnerability scanners and penetration testing tools).Prioritize vulnerabilities based on their severity and impact.Work with other teams to remediate vulnerabilities and ensure they are properly patched or mitigated.Provide recommendations to improve the overall security posture of our solutions.Perform vulnerability assessments and penetration testing to identify new vulnerabilities.Develop new tools to address the cybersecurity challenges in this area, with the aim of automating and simplifying vulnerability management and pentesting activities.Basic required skills: In-depth knowledge and expertise in cybersecurity concepts and technologies.Strong knowledge of vulnerability management tools and techniques.Experience in security testing (penetration and vulnerability testing, red teaming, bug hunting or CTF experience).Experience in prioritising vulnerabilities based on their severity and impact.Professional experience with security engineering practices such as web application security, network security, authentication and authorization protocols, cryptography, automation, and other software security disciplines.Knowledge of security frameworks and standards, such as CVE, CVSS, and CWE.Experience in working with other teams to remediate vulnerabilities.Familiar with the SBOM concept and related tools.Proficient in software engineering processes with strong general programming skills.Experience with Python, Java, and/or Go, as well as web development languages such as NodeJS and/or Angular.Understanding of software development phases and proficiency in supporting tools like GitHub, Maven, JUnit, Subversion, etc.Experience in working with virtualized environments and containers (e.g., Docker, Kubernetes).Fluent spoken and written English.Self-starter, proactive, and autonomous character.Ability to take part in technical discussions/negotiation among multiple actors.Other valuable skills: Experience/knowledge in distributed systems, internet communication protocols.Past involvement in research or innovation activities (FP7, H2020, HE, or others).Location: Hybrid-modeMust be legally authorized to work in Spain.
#J-18808-Ljbffr