application security penetration tester application data & traveler platform
Detail de l'annonce :
.
You’re interested in Cyber Security? Join us in the Application
Security team! The software & IT businesses are currently under
unprecedented threats with criminals having unlimited resources at
their disposals. Cyber Security is therefore needed more than ever and
you can make the difference!
The scope of the “R&D domain” Application Security Office in
Application Toolchain & Security Service is the complete portfolio of
products, applications and tools developed inside Amadeus. Objectives
focus on ensuring that existing and new Amadeus applications and other
developments are made sufficiently robust, against both exploitation
of potential vulnerabilities and fraudulent misuse, and that
compliance is maintained with all applicable legislation and industry
regulations or standards (such as PCI DSS, GDPR, and ISO 27K).
The Application Security Office plays a highly transversal role and
has multiple reporting lines, the main ones to the Application
Toolchain & Security Service and the Chief Information Security
Officer (CISO), and others to the PCI DSS and GDPR programs. Close
collaboration with all other security actors in the company is
essential.
Summary of the role
The Secure Development Lifecycle (a.k.a. SDL) Team in the Application
Security Office is mainly composed of pentesters who evaluate the
vulnerabilities of our applications and Program managers who need to
build the SDL methodology & tools and ensure their deployment within
the different Units.
This open position corresponds to a pentester role on our Amadeus
applications aiming at performing application pentests and
implementation of security tools. Pentesting requires good
communication, organization, coordination and autonomy skills.
Your main responsibilities
In a nutshell, you will be responsible for pentesting Amadeus
applications, assessing their level of quality in terms of security.
It can be performed on legacy and new applications.
You will then:
* Learn Application Security
_ Learn about Application Security Office and pentesting activities
to understand their needs, constraints and how to run them.
*
Run Pentests on Applications
_ Coordinate with development teams to access the applications
_ Find vulnerabilities by scanning, fuzzing, reverse engineering
applications.
*
Provide your Application Security pentester tooling needs
_ Provide your tooling need to our software developer for automation
& help purpose.
*
Document your work
_ Produce pentest documentation necessary for the restesting purposes
and knowledge sharing.
The ideal candidate
*
Computer Science or Engineering degree
* Following certifications are a plus:
* CEH, LPT, OSCP, GPEN, GWAPT, GXPN
* CASE, CSSLP, GSSP
What we can offer you
*
Get rewarded with a competitive remuneration, an individual and
company bonus and enjoy many benefits.
* Work from anywhere: Flexible teleworking from 1 day per week to
full weeks to full remote, you will also benefit from a home office
setting-up Premium & monthly allowance.
* Experience in an environment with unique complexity and a hardly
matched criticality among the leading tech companies.
* Professional development in a truly international and multisite
environment with a great mix of people.
* A wide set of trainings available to broaden your knowledge and
enhance your soft skills including onsite and on-line learning hubs
packed of technical and soft skills to help to develop any
competencies.
* 6 weeks holiday, plus pension contribution and healthcare
insurance.
* Enter a diverse and inclusive workplace.
* Enjoy your office life: Coffee hubs to work or relax, quiet zone,
flexible desks and agile areas, on site restaurants, tennis, soccer,
yoga, dance, on-site sport center and classes and on-site conciergerie
services.
We are a global company full of the greatest innovators, delivering
breakthrough solutions. We know that they deserve the best rewards,
and so do you if you join our team!
To build a career that is meaningful to you, we will follow you on
each step of this journey by offering training, international
mobility, a wide range of internal opportunities to grow your skills
and different types of career paths.
Join our engineering community that counts more than 2500 members in
Nice and 4000 worldwide.
We will provide you mentoring, training and continuous development
opportunities.
Check out Tavleen’s testimony: “_I started as a software developer
in Amadeus Nice. In 2013, I was ready for my next opportunity at Miami
in the new world of Operations. By 2015 I was now backpacking to take
the next challenge: lead a development team of Operational in another
location: Munich, Germany. This role got me the opportunity to lead
and build high performance agile teams, to improve my capacity in
drinking “weissbier” & to speak another language. I did fairly
good in all except the last one!_”
How do we hire?
The application process takes no longer than 10 minutes!
* ONLINE APPLICATION: Submit your online application and our Talent
Acquisition specialist will get back to you if your skills match the
role.
* PHONE INTERVIEW: We'll get to know each other with a short casual
conversation. You'll also have the chance to ask questions.
* ONLINE TESTING: Depending on the role you applied for, you might
have to do some online tests.
* INTERVIEWS: First you'll meet one of our talent teams. Then you'll
have an interview with a member or members of the team you're looking
to join.
* OFFER: Our Talent team will make you a job offer and welcome you to
your new role with us.
* JOIN OUR GLOBAL TEAM: Where you can develop your skills and build
an international career that matters.
ARE YOU THE ONE WE’RE LOOKING FOR? APPLY NOW!
_
Not ready? Email us for more information: joinus@amadeus.com_
Want to learn more about Amadeus, check out our blogs!
*
Developer blog
* Amadeus blog
We are an Equal Opportunity Employer and seek to hire the best
candidate regardless of age, beliefs, disability, ethnicity, gender or
sexual orientation.
_ Any duplication and display of partial or full content of our job
advertisement on any support, such as brochures, websites, mail,
emails, this list is not exhaustive, is strictly forbidden without
prior formal Amadeus’ authorization._
_ Recruitment agencies: Amadeus does not accept agency resumes. Please
do not forward resumes to our jobs alias, Amadeus employees or any
other company location. Amadeus is not responsible for any fees
related to unsolicited resumes._