-
inql
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
-
InfluxDB
Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.
100% Remote (US-Europe candidates only) At Doyensec (https://doyensec.com/), we believe that quality is the natural product of passion and care. We love what we do and we routinely take on difficult engineering challenges to help our customers build with security. Our clients are some of the global brands in the tech and startup communities. We help them secure their software and systems by providing information security consulting services (pentesting, reverse engineering, product security design and auditing). We keep a small dedicated client base and expect to develop long term working relationships with the projects and people with whom we work. We are looking for a highly experienced Cloud Security Engineer to join our team. We perform white-box security testing on complex cloud infrastructures. We need someone who has a strong interest in auditing and researching multiple cloud platforms and environments and can hit the ground running. We offer a competitive salary in a supportive and dynamic environment that rewards hard work and talent. We are dedicated to providing research-driven application security and therefore invest 25% of your time exclusively in R&D, where we build security testing tools, discover new attack techniques and develop exploits. Responsibilities: Conduct cloud based audits on popular web platforms and applications Research new class of attacks affecting containerized environments Provide support and guidance for clients concerning cloud security configuration, hardening and industry best practices Shape the internal methodology and tooling adopted by all team members during our cloud security engagements Requirements: Ability to discover, document and fix misconfigurations in cloud environments Strong security foundation on AWS security (must-have) and GCP/Azure (nice-to-have) Good understanding of Kubernetes, Docker and many other container technology Familiarity with standard cloud security testing tools: Scout Suite, Cloudspoit, Forseti Security, kube-bench and others You’re passionate about understanding complex environments Eager to learn, adapt, and perfect your work We offer: Remote work, with flexible hours Competitive salary with shared research revenue Startup atmosphere 25% R&D time (really!) Access to high-visibility security testing efforts for leading tech companies Possibility to attend and present at various security conferences around the globe
Related posts
-
/r/netsec's Q4 2022 Information Security Hiring Thread
-
doyensec/inql - InQL - A Burp Extension for GraphQL Security Testing
-
Enhance your python code security using bandit
-
How to write safe and secure Python code, detect CWE and avoid vulnerabilities in production code
-
Python logging.config code execution PoC exploit