Can you imagine a world where business and digital solutions will be truly seamless and where users will help companies to co-create them? Do you want to help us to shape this human-centered world? Welcome to UNGUESS.
UNGUESS is the crowdsourcing platform for effective testing and real insights that enable tech, digital and business leaders to make smarter decisions, faster. How? Unleashing the power of the crowd, a community of highly engaged people all over the world that allows us to bring end-customer insights into the design, development, and testing phases of a product.
UNGUESS Security is the Bug Bounty Platform that enable tech, digital and business leaders improve the security leveraging a community of hundreds of certified ethical hackers who collaborate, among themselves and with security teams, to find vulnerabilities.
We are looking for a Junior Cyber Security Specialist, who will take ownership of our bug bounty programs as a triager and ensure that they are managed at best: on time, with professionalism and to a high standard. Moreover, this role will assist in cyber security activities such as penetration testing and code reviews alongside the cyber security expert.
Requirements:
- Understanding of common vulnerabilities (OWASP Top 10, etc.) and corresponding mitigation strategies
- Familiarity with penetration testing and ethical hacking
- Familiarity with bug bounty programs and external collaboration with security researchers
- Good technical skills with a keen interest in learning methodologies and exploit techniques
- Communication and interpersonal skills
- Spoken and written Italian and English
- Critical thinking and problem-solving skills
- Strong attention to detail
- Bachelor's / Master’s degree in Computer Science, Information Security, or a related field is a plus
- Certifications such as OSCP, OSCE, CISSP, or equivalent are a plus
- An excellent team player
- Enthusiasm to be part of a fast-growing startup on a mission make a safer digital world
- Solution-oriented, constantly looking for ways to make things work better, run smoother and take less time
- Able to showcase proactive tendencies, continuously looking for ways to add and create value
Responsibilities:
- Manage and monitor the organization's bug bounty program, ensuring timely triage and resolution of reported vulnerabilities
- Conduct comprehensive penetration tests on web applications, networks, and infrastructure to identify and exploit vulnerabilities
- Collaborate with cross-functional teams to validate and verify reported vulnerabilities, ensuring accurate assessments
- Create comprehensive reports for both internal and external stakeholders, summarizing identified vulnerabilities and recommended corrective actions
- Participate in red teaming exercises and contribute to the enhancement of the organization's overall security strategy
What do we offer:
- Training courses and possible certifications
- Opportunity to grow in a short time period.
- Package: 20 - 29 K RAL to be adapted according to experience and skills, competitive package with flexibility on location and holidays policy.
- Location: the role is entirely remote