Junior Penetration Tester assisting with security testing across various environments at Civica. Gaining experience and exposure to cybersecurity practices and frameworks under senior experts' guidance.
About the role
- Lead Penetration Tester managing penetration testing projects across various platforms for Civica. Responsible for security assessments, report crafting, and collaboration with teams.
Responsibilities
- Step into a lead role where your expertise drives high‑impact penetration testing projects across web applications, APIs, mobile platforms, and network infrastructure.
- You’ll work independently with confidence, applying frameworks like OWASP Top 10 and SANS/CWE Top 25 to uncover, exploit, and clearly document vulnerabilities that matter.
- Take ownership of comprehensive security assessments by blending manual and automated techniques — from deep enumeration and exploitation to thorough follow‑up validation.
- Your skills will shape mobile security reviews on Android and iOS, as well as cloud security evaluations on AWS and Azure.
- You’ll craft reports that don’t just highlight issues but tell a clear story — accessible to both technical teams and non‑experts, with actionable recommendations that drive real change.
- Collaboration is key: you’ll partner closely with development and infrastructure teams to ensure patches are applied, tested, and validated.
- Most importantly, you’ll stay ahead of the curve — continuously sharpening your knowledge with the latest CVEs, attack methods, and cutting‑edge tools.
Requirements
- 2 years of hands-on penetration testing or offensive security experience.
- Solid understanding of OWASP Top 10 and SANS/CWE Top 25, with the ability to manually identify and exploit common vulnerability classes.
- Experience in web application and network security testing using tools such as Burp Suite Pro, OWASP ZAP, Nmap, Nessus, Metasploit, and Wireshark.
- Exposure to mobile (Android/iOS), API, and cloud security (AWS, Azure) testing methodologies.
- Understanding of CVSS v4.0 for vulnerability scoring and risk communication.
- Basic scripting ability in Python, Bash, or PowerShell, with good communication skills to present findings clearly.
Benefits
- We're all different - and we love this about us.
- We provide an inclusive, safe, and welcoming environment to all Civicans - there are heaps of opportunities to enable you to grow and be your best.
- Giving culture - we encourage you to "give back" with benefits such as our Days of Difference leave where you can volunteer for a charity of your choice.
- Flexible Work - we have comprehensive flexibility options including part-time work, adjusted hours, staggered shifts, and hybrid or remote working, supporting work–life balance based on individual needs.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Director of Design Quality Assurance overseeing NPI programs for high - quality medical device introduction. Collaborating cross - functionally to ensure compliance and effective execution in a dynamic environment.
Quality Assurance Analyst in pharmaceutical company ensuring quality processes and supplier qualifications. Join a growing team in innovative radio - pharmacy solutions based in Porto Alegre.
Senior QA Engineer testing Oracle Banking Suite and mobile applications in a hybrid role. Performing quality assurance tasks and collaborating with development teams.
Quality Analyst monitoring compliance and validation processes at Aché pharmaceutical company in Guarulhos. Involves project oversight, documentation management, and support during internal audits.
Quality Engineer leading testing for Wi - Fi firmware releases at Meter. Responsible for ensuring the performance of wireless access points in diverse environments.
Corporate Account Executive responsible for driving new business opportunities in Qatar. Engaging with prospective customers and running end - to - end sales processes for CrowdStrike, a cybersecurity leader.
Quality Analyst planning and executing software testing activities at Minsait. Collaborating with multidisciplinary teams to ensure software reliability and standard quality processes.
Engineer Associate implementing technical quality solutions for manufacturing processes at Schaeffler. Collaborating on quality checks and audits while managing complaints and costs in production.
Tester performing manual testing and quality assurance tasks for Qualysoft Group's IT consulting solutions. Collaborating on diverse projects in a hybrid workplace in Budapest.