CSST Analyst @

        At least 4 years of prior demonstrable hands-on experience in penetration testing        Previous participation in Bug Bounty Programs would be a plus        Solid understanding of the platform security models for iOS and Android platforms        Excellent understanding of platform-specific security risks, common vulnerabilities for mobile applications, common risks in financial applications        Practical knowledge of penetration testing of widely understood infrastructure, web and mobile technologies, using manual and automated testing methods        Excellent TCP/IP knowledge and understanding of security implications/issues        Strong web application testing experience        Proven programming/scripting skills        Ability to explain security functionality from first principles        Ability to adapt and apply information to new scenarios and technologies        Strong understanding of applied use of cryptography in application development

Creating an inspiring place to thrive for the talented, we use their expertise and courage to introduce the technology of the future into your business. - This is the foundation of Mindbox and the goal of our business and technology journey. We operate and develop in four areas:

 Autonomous Enterprise - automation of business processes using RPA, OCR, and AI.

Business Managment Systems ERP - we implement, adapt, optimize, and maintain flexible, safe, and open ERP of production and distribution companies worldwide.

Talent Network - we provide access to the best specialists.

 Modern Architecture - we build integrated, sustainable, and open CI / CD environments based on containers enabling safe and more frequent delivery of proven changes in the application code.

We treat technology as a tool to achieve a goal. Thanks to our consultants' reliability and proactive approach, initial projects usually become long-term cooperation. For over 16 years, it has provided various services to support clients in digital transformation.

#LI-Hybrid

We offer:
We are open to the employment form according to your preferences Work with experienced and engaged team, willing to learn, share knowledge and open for growth and new ideas Hybrid working system (6 days per month in Kraków office) Mindbox is a dynamically growing IT company, but still not a large one – everybody can have a real impact on where we are going nextWe invest in developing skills and abilities of our employeesWe have attractive benefits and provide all the tools required for work f.e. computerInterpolska Health Care, Multisport, Warta Insurance, training platform (Sages)  ,[Analyzing, assessing and responding to the security vulnerabilities received as part of Bug Bounty Program, Researching and reproducing the security vulnerabilities, Performing the root cause analysis of the security vulnerabilities, Effectively communicating with the internal teams within Bank, Effectively communicating with the external security researchers, Working closely with the appropriate stakeholders across departments to help them understand the risks, and the track remediation, Driving improvements including tooling, automation, and setting up processes, Help drive the maturity of Bug Bounty Program by continuously improving quality of our services and removing inefficiencies, in line with wider Cybersecurity strategy, Advise on vulnerability remediation, control implementation and secure development practices] Requirements: Penetration testing, iOS, Android, Automated testing, Manual Testing, TCP/IP Additionally: Sport subscription, Private healthcare, International projects, Free coffee.

---