




Job Summary: The professional will plan and conduct penetration tests, analyze vulnerabilities, provide technical recommendations, and promote security awareness. Key Highlights: 1. Plan and conduct penetration tests and vulnerability assessments 2. Provide technical recommendations and assist in risk mitigation 3. Promote security awareness and guide best practices **Location:** Morro dos Ingleses, São Paulo **Working Hours:** 09:00 to 18:00 **Employment Type:** PJ (Individual Contractor) or Cooperative **Work Model:** Hybrid (3 days/week) **MAIN RESPONSIBILITIES** * Plan and conduct penetration tests and vulnerability assessments on web applications, mobile applications, and diverse environments; * Provide technical recommendations and assist responsible technical teams in mitigating and/or eliminating identified risks; attend meetings with business, development, and other departments, and deliver appropriate consulting services; * Assist in promoting security awareness across various company departments; * Guide on security best practices for environments and architectures; * Test new technologies and tools designed for vulnerability identification; **REQUIREMENTS** * In-depth knowledge of ethical hacking techniques and penetration testing frameworks, such as OWASP; * In-depth knowledge of system development, including programming and scripting languages such as Python, Java, Ruby, shell scripting, PowerShell, among others; * Experience with RESTful APIs, system integrations, SOA middleware, and mobile applications; * Proficiency with various commercial and open-source pentesting tools, such as Kali Linux, Metasploit, Wireshark, and Burp Suite; * Solid understanding of network protocols and architectures, perimeter security, operating systems, and application architectures. * Strong problem-solving and analytical thinking skills; * Creativity; * Experience delivering technical demonstrations and explanations regarding identified vulnerabilities; * Ability to infer and demonstrate potential financial losses resulting from identified vulnerabilities; * Experience preparing penetration test reports tailored for both executive and technical audiences; * OSCP or CEH certifications are desirable. Minimum Education: Bachelor's Degree


