Security Testing Engineer

We are seeking a detail-oriented Security Testing Engineer to enhance the security of our solutions through robust testing and monitoring practices. The role involves performing in-depth security and penetration tests, identifying vulnerabilities, and documenting existing issues. Familiarity with the MS Azure ecosystem is critical to ensure the security of cloud-based applications and services.
This position offers remote setup with the flexibility to work from any location in Georgia, whether it's your home, well-equipped offices in Tbilisi and Batumi or a coworking space in Kutaisi.

#LI-DNI

Responsibilities

• Security Testing Practices: Design and implement comprehensive security testing and monitoring processes to safeguard the application and infrastructure
• Penetration Testing: Perform in-depth penetration testing to uncover vulnerabilities and security gaps in the solution
• Issue Documentation: Identify, document, and prioritize security risks and vulnerabilities, providing actionable recommendations for remediation
• Azure Security Integration: Leverage MS Azure security tools and practices to monitor, assess, and enhance the security posture of the application
• Collaboration: Work closely with development, operations, and DevOps teams to integrate security practices into the CI/CD pipeline and SDLC
• Monitoring and Alerts: Implement automated monitoring and alerting systems for security incidents, ensuring proactive detection and response
• Reporting: Provide detailed security assessment reports and dashboards, highlighting risks, trends, and improvements

Requirements

• Proven experience in security testing and penetration testing for applications and infrastructure
• Strong understanding of MS Azure security tools (e.g., Azure Security Center, Azure Sentinel) and best practices
• Familiarity with vulnerability scanning tools (e.g., OWASP ZAP, Burp Suite, Nessus)
• Knowledge of common security standards and frameworks (e.g., OWASP, ISO 27001, NIST)
• Experience in scripting and automation for security testing (e.g., Python, JavaScript, or PowerShell)
• Excellent analytical skills to assess risks and prioritize vulnerabilities effectively
• Strong communication and documentation skills

Nice to have

• Familiarity with secure coding practices and code review
• Experience in incident response and handling security breaches
• Knowledge of container and microservices security

We offer

• We connect like-minded people:
  • Delivering innovative solutions to industry leaders, making a global impact
  • Enjoyable working environment, whether it is the vibrant office or the comfort of your own home
  • Opportunity to work abroad for up to two months per year
  • Relocation opportunities within our offices in 55+ countries
  • Corporate and social events
• We invest in your growth:
  • Leadership development, career advising, soft skills and well-being programs
  • Certifications, including GCP, Azure and AWS
  • Unlimited access to LinkedIn Learning, Get Abstract, O'Reilly
  • Free English classes with certified teachers
• We cover it all:
  • Participation in the Employee Stock Purchase Plan
  • Monetary bonuses for engaging in the referral program
  • Comprehensive medical & family care package
  • Five trust days per year (sick leave without a medical certificate)
  • Benefits package (sports activities, a variety of stores and services)

EPAM Georgia is a team of innovators united by a passion for technology. The dynamic and inclusive culture we embrace helps positively impact our communities, clients, and employees. Here you will collaborate with multi-national teams, contribute to numerous cutting-edge projects, deliver the most creative solutions, and have an opportunity to learn. Our people are at the heart of our success, and we are proud to provide talents with a solid ground to develop and grow.

Client-provided location(s): Zestap’oni, Georgia

Job ID: EPAM-epamgdo_blt9aff2ff532648612_en-us_Other_Georgia

Employment Type: OTHER

Posted: 2025-02-04T12:39:02