Senior Penetration Tester (Belgrade)

About us

CAKE.com is a unicorn, product-based software company, with offices in California, Europe, and Asia.

We are focused on creating products that are used by millions around the world. Some of our products include Clockify (time tracking app), Pumble (business communication app), and Plaky (task management app).

Clockify is the world's #1 time tracker, used by millions, from individuals to big companies like Hewlett-Packard Enterprise, American Express, Amazon, etc.

Responsibilities

• Perform penetration tests on our web applications, mobile apps, and infrastructure
• Identify, analyze, and document security vulnerabilities
• Collaborate with development teams to prioritize and remediate identified vulnerabilities
• Develop and implement effective penetration testing strategies and methodologies
• Provide guidance and mentorship to junior penetration testers
• Keep up to date with the latest security trends, tools, and best practices

Requirements

• 7+ years of experience in penetration testing or related cybersecurity roles
• Strong knowledge of web application security, mobile app security, and network security
• Proficient in using various penetration testing tools (e.g., Burp Suite, Metasploit, Nmap, etc.)
• Familiarity with programming languages (e.g., Python, Go, Java, etc.) and scripting for automation
• Knowledge of vulnerability management and risk assessment processes
• Bachelor's degree in Computer Science, Cybersecurity, or equivalent work experience
• Ability to work in CET timezone (9:00-17:00 UTC+1)
• Fluent in Ex-Yu languages (Serbian, Bosnian, Croatian, Montenegrin)

Nice-to-haves

• Certifications such as OSCP, OSCE, or similar
• Experience with cloud security and infrastructure-as-code (IAC) tools
• Familiarity with DevSecOps principles and methodologies