Experteer Overview
Si sus habilidades, experiencia y cualificaciones coinciden con las de esta descripción del puesto, no demore su solicitud.
As a Pentesting engineer in GMV's Technical Audits team, you perform advanced offensive security assessments across web, mobile, infrastructure, cloud, and AI environments. You will contribute to Red Team and Purple Team exercises, identify vulnerabilities, and propose practical mitigations while collaborating with IT and security groups. You’ll produce technical reports that translate findings into actionable risk insights. This role offers hands-on impact, exposure to cutting-edge tech, and opportunities for professional growth in a fast-paced, no-nonsense culture.
Compensaciones / Beneficios
• Conduct pentests on web/mobile apps, infrastructure, Wi‑Fi, cloud (AWS, Azure, GCP) and AI environments
• Participate in Red Team and Purple Team exercises
• Identify vulnerabilities and propose mitigations
• Collaborate with IT and cybersecurity teams to implement best practices
• Write technical reports with findings, risk analysis, and remediation plans
Responsabilidades
• Pentesting experience across infrastructure, web/mobile apps, cloud, AD, and Wi‑Fi networks
• Red Team operations using evasion, persistence, and exploitation techniques
• Certifications such as OSCP, OSEP, OSWE, CRTP, eCPPT…
• Proficiency with Burp Suite, Nmap, Metasploit
• Ability to communicate xpzdshu technical findings and risks to varied audiences
• Critical thinking and complex problem-solving skills
• Scripting knowledge in Python, Bash, PowerShell
• Familiarity with PTES, MITRE ATT&CK, OWASP
Requisitos principales
• Hybrid work model
• 8 weeks remote per year
• Flexible hours
• Career development plans and training
• Relocation package
• Wellbeing program (insurance, wellness training)