My client, a rapidly expanding Technology company in Cork is seeking experienced Cyber Security Engineers. with expertise in application security to ensure that their internal and external applications, websites, services, mobile applications, and other computing resources are designed and implemented to the highest standards. If you enjoy discovering, analyzing, and addressing security issues and quickly reacting to new threat scenarios, this position will provide you with a challenging opportunity.
The position will see the candidate working in a global, cross-functional role that will assess and validate secure software development practices are employed by software development teams in the business through the use of technical tools and software techniques.
Responsibilities:
* Conduct security assessments and penetration tests across the organization and beyond, both manually and through automated tools, in order to ensure the security of our applications, systems, and networks
* Promote secure Software Development Lifecycle (SDLC) habits
* Participate in Incident Response efforts as necessary and related Red vs. Blue activities
* Ensure the security hardening and vulnerability patching of the organization's networks and infrastructure
* Analyze the results of vulnerability assessments and code reviews, write reports based on that analysis, and advise management of vulnerabilities, risk and mitigation
* Provide technical advice and/or consultation to distributed personnel who are responsible for the development, deployment, administration, and security of the organization's applications, services, and networks
* Support the vulnerability scanning and patch management process. Assist management in the collection and reporting of metrics and KPIs relating to vulnerability assessment
* Stay informed about the latest developments in the information security field, including new products and services, through on-line news services, technical magazines, professional associations, industry conferences, training seminars, and other information sources
* Follow and participate in vulnerability/exploit research
*Support departmental and organizational activities, goals and objectives as required
Skills/Experience
* Significant experience conducting vulnerability assessments, code reviews and penetration tests against web application technologies, services, platforms and languages to find flaws and exploits (e.g., Cross-Site Scripting, SQL Injection, Cross-Site Request Forgery, Authentication / Authorization and Business Logic Bypass, OWASP Top 10, CWE/SANS top 25, PCI, etc.)
* Secure software development experience and/or training and knowledge of SDLC methodologies
* Experience with vulnerability assessment tools and penetration testing techniques. (e.g., web application scanners, static source code analyzers, web application proxies, infrastructure / network vulnerability scanners , packet capture and analysis software, network mapping and port scanners, exploit automation platforms, OWASP, OSSTM, WASC, website configuration best practices, etc.)
* Solid programming / debugging skills with proficiency in one or more of the following; Java, JavaScript, XML, PHP, ASP.NET, AJAX, Objective-C, and other scripting languages. Experience as a developer preferred
* Knowledge of vulnerabilities in various operating systems, databases, and networks, in relation to hardening, configuration, deployment, and administration
* Subject matter expertise in general information security, cryptographic principles, common communication protocols, information systems auditing, computer forensics, packet analysis, mobile frameworks, intrusion detection/prevention systems and techniques, and security incident response handling
* Exceptional written and oral communication skills, including the ability to compose concise and accurate assessment and audit reports while being able to explain attacks and root cause of vulnerabilities to technical staff and upper management
* Actively contribute within a team of security professionals, as well as the capability to work independently with limited direction
* Exceptional communications skills with fluency in English desired; strong bi-lingual communications skills a plus
*LI-EMEA
Required: Bachelors of Science in: Computer Engineering, or Computer Science, or Applied Mathematics, or Information Technology; or equivalent experience
Certifications: CIPP, CISSP, CISA, or similar certifications a plus
![]()
The position will see the candidate working in a global, cross-functional role that will assess and validate secure software development practices are employed by software development teams in the business through the use of technical tools and software techniques.
Responsibilities:
* Conduct security assessments and penetration tests across the organization and beyond, both manually and through automated tools, in order to ensure the security of our applications, systems, and networks
* Promote secure Software Development Lifecycle (SDLC) habits
* Participate in Incident Response efforts as necessary and related Red vs. Blue activities
* Ensure the security hardening and vulnerability patching of the organization's networks and infrastructure
* Analyze the results of vulnerability assessments and code reviews, write reports based on that analysis, and advise management of vulnerabilities, risk and mitigation
* Provide technical advice and/or consultation to distributed personnel who are responsible for the development, deployment, administration, and security of the organization's applications, services, and networks
* Support the vulnerability scanning and patch management process. Assist management in the collection and reporting of metrics and KPIs relating to vulnerability assessment
* Stay informed about the latest developments in the information security field, including new products and services, through on-line news services, technical magazines, professional associations, industry conferences, training seminars, and other information sources
* Follow and participate in vulnerability/exploit research
*Support departmental and organizational activities, goals and objectives as required
Skills/Experience
* Significant experience conducting vulnerability assessments, code reviews and penetration tests against web application technologies, services, platforms and languages to find flaws and exploits (e.g., Cross-Site Scripting, SQL Injection, Cross-Site Request Forgery, Authentication / Authorization and Business Logic Bypass, OWASP Top 10, CWE/SANS top 25, PCI, etc.)
* Secure software development experience and/or training and knowledge of SDLC methodologies
* Experience with vulnerability assessment tools and penetration testing techniques. (e.g., web application scanners, static source code analyzers, web application proxies, infrastructure / network vulnerability scanners , packet capture and analysis software, network mapping and port scanners, exploit automation platforms, OWASP, OSSTM, WASC, website configuration best practices, etc.)
* Solid programming / debugging skills with proficiency in one or more of the following; Java, JavaScript, XML, PHP, ASP.NET, AJAX, Objective-C, and other scripting languages. Experience as a developer preferred
* Knowledge of vulnerabilities in various operating systems, databases, and networks, in relation to hardening, configuration, deployment, and administration
* Subject matter expertise in general information security, cryptographic principles, common communication protocols, information systems auditing, computer forensics, packet analysis, mobile frameworks, intrusion detection/prevention systems and techniques, and security incident response handling
* Exceptional written and oral communication skills, including the ability to compose concise and accurate assessment and audit reports while being able to explain attacks and root cause of vulnerabilities to technical staff and upper management
* Actively contribute within a team of security professionals, as well as the capability to work independently with limited direction
* Exceptional communications skills with fluency in English desired; strong bi-lingual communications skills a plus
*LI-EMEA
Required: Bachelors of Science in: Computer Engineering, or Computer Science, or Applied Mathematics, or Information Technology; or equivalent experience
Certifications: CIPP, CISSP, CISA, or similar certifications a plus