Iterasec

Iterasec works with clients worldwide, helping them find vulnerabilities and secure their products. Our projects range from mobile/web applications to complex modern cloud and automotive stacks. We work with both small product companies as well as Fortune 500 enterprises.

We are looking for a talented and motivated Junior Pentester who will join our security team to work on penetration testing and vulnerability/cloud security assessment projects.

We expect a short motivation letter where you can explain your skills, achievements and motivation.

Required skills

- Solid non-commercial cybersecurity experience, such as HTB/THM

- Junior-level cybersecurity certifications would be a plus.

- Comfortable with basic application security testing and common vulnerabilities (like OWASP Top 10, CWE Top 25) and cybersecurity fundamentals

- Strong basic IT skills: Linux, networking (TCP/IP, DNS, HTTP etc.)

- Some experience in scripting/coding languages, such as Java, JS, Python, Shell, etc.

- Strong drive to learn and develop cybersecurity skills

- Technical English (Intermediate)

We offer

- Good salary + bonus system

- Rewarding environment: brilliant team ready to share knowledge and collaborate

- Support in obtaining professional certifications, such as BSCP, OSCP, eWPTX, cloud certifications, etc.

- Courses and conferences which are relevant to the position are sponsored by the company.

- We are a remote-first company with full WFH support and a flexible work schedule.

Responsibilities

- Execute penetration tests and security assessments as part of a team, including internal/external networks, web and mobile applications, Windows and Linux environments, cloud architectures, IoT devices, and more

- Create assessment documentation and reports, clearly identifying vulnerabilities and associated remediation steps

- Conduct security research

Iterasec works with clients worldwide, helping them find vulnerabilities and secure their products. Our projects range from mobile/web applications to complex modern cloud and automotive stacks. We work with both small product companies as well as Fortune 500 enterprises.

We are looking for a Middle/Senior Security Consultant / Penetration tester to work on and lead penetration testing and vulnerability/cloud security assessment projects.

In this role, you will work on technically challenging projects and also spend some time leading/mentoring our junior pentesting colleagues.

Required skills

- 1.5+ years of intensive commercial experience

- OSCP, eWPTx2 or similar would be a plus

- Scripting/coding skills and being comfortable with advanced pentesting tooling

- Strong knowledge of mobile/web security

- Comfortable with cloud and container security

- Basic RE skills

- Ability to mentor/lead colleagues

- Strong ability and drive to learn and develop cybersecurity skills

- Technical English (Intermediate+)

We offer

- Good salary + bonus system

- Diverse project portfolio and technologies to work with

- Rewarding environment: brilliant team ready to share knowledge and collaborate

- Courses and conferences which are relevant to the position are sponsored by the company.

- We are a remote-first company with full WFH support and a flexible work schedule.

Responsibilities

- Participate in various pentesting projects

- Lead junior colleagues

- Perform threat modeling in pentesting and security assessment projects

- Create assessment documentation and reports, clearly identifying vulnerabilities and associated remediation steps

- Consult clients on efficient issues remediation

- Conduct security researches

- Develop tools and scripts to automate and improve current pentesting processes

Founded in 2019 by a brilliant ethical hacker and a former CTO, Iterasec has grown into one of the leading penetration testing companies in Ukraine and Poland. We specialize in high-impact and in-depth security testing – from web and mobile apps to complex infrastructures, IoT, automotive systems, networks, and cloud environments. 

We have built and retained one of the best pentesting teams in Ukraine and Poland, we are truly proud of each and every employee and believe this is our core differentiator. Our clients are fast-moving startups as well as Fortune 500 giants and world-renowned automotive and cloud companies. 

We're seeking a Junior to Mid-Level Software Engineer to design, build, and maintain internal tools that automate our diverse cybersecurity operations – from asset and source code scanning to intelligent report generation. You'll work directly with our pentesters, translating their needs and observations into powerful, efficient solutions.

Beyond daily automation, you'll have the space for R&D, e.g. researching common misconfigurations in modern software frameworks and developing innovative tools to detect them. We believe in the transformative power of AI and are keen to explore its application in our tooling.

Responsibilities: 

• Develop and maintain internal tools using Python, JavaScript, and Bash.
• Automate tasks across the pentesting lifecycle, including scanning, analysis, and reporting.
• Collaborate directly with our pentesters to gather requirements and deliver solutions.
• Research emerging vulnerabilities and misconfigurations.
• Design and build tools to automate the detection of new security issues.
• Explore and integrate AI/ML techniques to enhance our capabilities.

Requirements: 

• Solid experience coding in Python, JavaScript, and Bash.
• A genuine and demonstrable interest in cybersecurity.
• A proactive, problem-solving mindset and the ability to work independently.
• Excellent communication skills to effectively collaborate with technical teams.
• Eagerness to learn and contribute to R&D efforts.
• Understanding of basic application security and common vulnerabilities (like OWASP Top 10, CWE Top 25) and cybersecurity fundamentals
• Strong basic IT skills: Linux, networking (TCP/IP, DNS, HTTP etc.)
• Experience with AI/ML frameworks or Cloud/Kubernetes (optional, would be a plus)

We offer:

• Good salary and an adequate benefits package
• Challenging R&D and process automation tasks  
• Rewarding environment: one of the best cybersecurity teams in Ukraine to work with
• Courses and conferences which are relevant to the position are sponsored by the company.
• We are a remote-first company with full WFH support and a flexible work schedule.