Senior Penetration Tester
CTS Eventim Israel
full-time
Posted on:
Location Type: Office
Location: Bremen • Germany
Visit company websiteExplore more
Job Level
Tech Stack
About the role
- Strengthen the security of eCommerce platforms (web, APIs, and potentially mobile) through practical attack simulations
- Identify vulnerabilities and provide clear, actionable recommendations
- Support teams through to their sustainable remediation
- Plan, coordinate and execute penetration tests including web, APIs, infrastructure & cloud
- Conduct threat- and abuse-case-based testing along typical eCommerce flows
- Produce high-quality reports and present findings to both technical teams and management
- Advise engineering teams on fixes and verify remediations (re-tests)
- Continuously improve testing methodologies
- Establish security standards and drive automation and tooling initiatives
Requirements
- Several years of experience in penetration testing at a senior level, with a focus on web and API security
- Confident in manual testing (not limited to using scanners)
- Strong technical understanding of web architectures, OAuth, session handling, API design, and common vulnerability classes
- Excellent documentation and communication skills: able to explain findings precisely, prioritize recommendations, and align stakeholders
- Experience with established methodologies and standards (e.g., OWASP Testing Guide, ASVS) and disciplined handling of scope and rules of engagement
- Very good written and spoken English skills are required
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
penetration testingmanual testingweb securityAPI securityvulnerability assessmentthreat testingremediation verificationtesting methodologiessecurity standardsautomation
Soft Skills
documentationcommunicationstakeholder alignmentprioritizationpresentation