




Job Summary: We are seeking a technology professional to conduct penetration tests across various applications and infrastructures, as well as support Blue Team activities. Key Highlights: 1. Conduct Black Box, Gray Box, and White Box penetration testing. 2. Perform penetration tests on APIs, web applications, infrastructure, and mobile applications. 3. Support technical teams in remediation and validation of vulnerabilities. We are a technology company that constantly challenges our clients to modernize their infrastructure using innovative concepts such as edge computing, hybrid cloud, autonomous operations, cybersecurity, and multi-connectivity. We are part of Grupo UOL — a 100% Brazilian company, pioneer in the internet industry, revolutionizing the digital universe since 1996\. Innovation is in our DNA, and we have a creative, passionate, and tireless team dedicated to finding the best solutions. If this resonates with you, check out our opportunity and join us as an \#Edger! **\#VemPraEdgeUOL** At **Edge UOL**, everyone is welcome — **regardless of gender, sexual orientation, ethnicity, culture, religion, disability, etc.** What matters most is your passion for challenges, ability to work well in teams, alignment with our culture and mission to innovate and deliver the best technology solutions — empowering our clients’ businesses and improving people’s lives. **Responsibilities and Duties** * Execute Black Box, Gray Box, and White Box penetration testing. * Perform penetration tests on APIs, web applications, infrastructure, and mobile applications (Android and iOS – APK/IPA). * Support Blue Team activities, including incident analysis, alert validation, and enhancement of detection mechanisms. * Identify, exploit, and document technical and logical vulnerabilities. * Assess authentication, authorization, and session management. * Apply frameworks and best practices such as: OWASP Top 10 (Web, API, and Mobile). OWASP ASVS. MITRE ATT\&CK. * Prepare technical and executive reports containing evidence, impact analysis, and mitigation recommendations. * Support technical teams in remediating and validating identified vulnerabilities. **Requirements and Qualifications** * Bachelor’s degree in Information Technology or related field. * Proven experience conducting penetration tests on web applications and APIs. * Solid experience in infrastructure penetration testing. * Hands-on experience with mobile penetration testing (Android and iOS). * Knowledge of: * HTTP/HTTPS, TCP/IP, DNS, SSL/TLS. * OAuth2, OpenID Connect, and JWT. * Experience with tools such as: * Burp Suite. * Nmap. * Metasploit. * OWASP ZAP. * MobSF. * SQLMap. * Strong knowledge of Linux and Windows operating systems. * Analytical skills and ability to produce clear, concise, and objective technical reports. **Additional Information** **Desirable:** * Certifications such as: OSCP, OSWE, OSCE. CEH, GPEN, GWAPT. * Experience with Cloud Security (AWS, Azure, or GCP). * Knowledge of programming languages such as Python, JavaScript, Java, Kotlin, or Swift. * Experience in regulated environments (financial sector, LGPD, PCI DSS). We are a technology company that constantly challenges our clients to modernize their infrastructure using innovative concepts such as edge computing, hybrid cloud, autonomous operations, cybersecurity, and multi-connectivity. We are part of Grupo UOL, a 100% Brazilian company, pioneer in the internet industry, revolutionizing the digital universe since 1996\. Our purpose is to deliver differentiated services, offering a unique hybrid experience by connecting technologies and workloads — regardless of distance — with ultra-low latency, performance, and resilience. Innovation is embedded in our DNA, and we have an incredible team — passionate about what they do and relentless in pursuing the best solutions. If you identify with this, are creative, and love challenges, explore our opportunities and join us as an \#Edger! \#VemPraEdgeUOL


