Description de l'annonce:

We are seeking a highly skilled and proactive Penetration Tester (Ethical Hacker) to identify vulnerabilities, perform security assessments, and enhance cybersecurity across fintech solutions at SKY PAY. The ideal candidate will conduct thorough security evaluations, simulate cyberattacks, and strengthen protection against fraud, payment security threats, and data breaches.

This role requires deep expertise in fintech security, payment gateway protection, API security, blockchain vulnerabilities, and compliance with financial regulations such as PCI DSS.

Key Responsibilities:

Security Assessment & Penetration Testing

• Conduct comprehensive penetration testing on payment gateways, financial platforms, and fintech applications.
• Identify and exploit security vulnerabilities within networks, APIs, web applications, and blockchain-based payment systems.
• Perform black-box, white-box, and gray-box testing to simulate real-world cyber threats.
• Analyze system weaknesses, assess fraud prevention capabilities, and recommend security improvements.
• Test transaction integrity, user authentication protocols, and payment processing security to prevent unauthorized access.
• Ensure fintech services comply with PCI DSS, GDPR, ISO 27001, and cybersecurity best practices.

Threat Hunting & Vulnerability Management

• Investigate potential threats, perform risk analysis, and report critical vulnerabilities before exploitation occurs.
• Utilize AI-driven security monitoring tools to identify fraud patterns and suspicious activities.
• Deploy continuous security scanning techniques to monitor real-time cybersecurity risks.
• Collaborate with risk and compliance teams to implement data protection measures and incident response protocols.

Blockchain & API Security Testing

• Conduct security analysis on smart contracts, blockchain transactions, and crypto-payment flows.
• Perform API security testing, ensuring secure data transmission between banking and fintech platforms.
• Develop penetration test cases for embedded finance, DeFi platforms, and AI-powered payment solutions.

Red Team & Ethical Hacking Operations

• Simulate cyberattacks using red team methodologies, identifying security loopholes in fintech systems.
• Educate internal teams on security awareness, best practices, and threat mitigation strategies.
• Engage in ethical hacking exercises to test internal cybersecurity defenses.

Security Reporting & Continuous Improvement

• Create detailed security reports outlining vulnerabilities, attack vectors, and remediation strategies.
• Collaborate with development, compliance, and IT teams to enhance secure coding practices and software resilience.
• Provide recommendations for security infrastructure improvements, access control measures, and authentication techniques.

Required Skills & Qualifications:

Education & Experience:

• Bachelor's degree in Cybersecurity, Computer Science, IT Security, or related field.
• 4+ years of experience in penetration testing, ethical hacking, or cybersecurity within fintech and Payment systems.
• Extensive knowledge of PSP security, blockchain vulnerabilities, AI-driven fraud detection, and regulatory compliance.

Technical Skills:

• Expertise in penetration testing tools (Burp Suite, Metasploit, Wireshark, Nmap, Kali Linux, OWASP ZAP).
• Strong understanding of network security, cryptography, API security, and smart contract auditing.
• Experience with secure coding practices, DevSecOps, and threat modeling techniques.
• Proficiency in Python, Java, Bash scripting, and cybersecurity automation frameworks.
• Knowledge of firewall configurations, SIEM tools, IDS/IPS systems, and zero-trust architecture.

Soft Skills & Competencies:

• Analytical Thinking: Ability to dissect security flaws and propose effective solutions.
• Problem-Solving Abilities: Proactive in identifying security risks and mitigating cyber threats.
• Communication Skills: Ability to translate technical security findings into actionable recommendations for executives and Developers.
• Adaptability & Innovation: Ability to stay ahead of evolving cyber threats and fintech security challenges.
• Collaboration & Leadership: Work effectively with teams to create a secure fintech ecosystem.