Senior Tech leader - Python

Since its foundation in 1925, the DEKRA promise has been to ensure the safety of human interaction with technology and the environment. The company employs around 48,000 people in more than 60 countries on all five continents. Our vision for our 100th birthday in 2025 is to see DEKRA as the global partner for a safe, secure and sustainable world. Within our Cybersecurity Hub, we are responsible for performing product security evaluations for the most important manufacturers worldwide. As a Security Expert, your main objective will be to perform security assessments to identify hidden risks, vulnerabilities, and security flaws in a variety of products, applications, and services, including mobile applications. This involves evaluating mobile platforms (iOS and Android), analyzing app behavior, inspecting network communications, and identifying weaknesses in areas such as storage, authentication, cryptography, and platform misuse.

• Help ensure our clients’ products are designed and implemented to the highest security standards.
• Perform penetration testing and security assessment for devices.
• Develop comprehensive and accurate security penetration reports.
• Work directly with the internal team and customers to solve challenging software and hardware problems.

• 3+ years of demonstrated experience in penetration testing.
• Bachelor’s degree in Computer Science, Telecommunication, or equivalent.
• Demonstrated hands-on experience with Linux.
• Ability to perform manual penetration testing techniques, including testing for vulnerabilities such as SQL Injection, Command Injection, Local File Inclusion (LFI).
• Knowledge of web application vulnerabilities and web application penetration testing tools such as Burp Suite, OWASP ZAP, etc.
• Familiarity with network penetration testing and tools like Nmap, Metasploit, Wireshark, FFUF.
• Proficiency in scripting languages (Python, Ruby, Perl, Bash).
• Fluent in English.
• Determined, passionate, and with a keen eye for detail; able to learn day to day.
• Aptitude for teamwork in an international environment.
• Preferred: OSCP, BSCP, CPTS, CBBH, EMAPT or similar; knowledge of mobile application security testing (static/dynamic analysis, APK reverse engineering); familiarity with common mobile vulnerabilities (OWASP MAS Top 10).
• Knowledge of mobile Pentesting Tools: Frida, Jadx, ADB, MobSF.
• Participation in Bug Bounty programs, CTFs, Hack The Box, or similar activities; ability to present research at congresses is valued.

• Permanent contract.
• Flexible work model that allows conciliation between personal and work life.
• Intensive summer days and every Friday of the year.
• Access to restaurant vouchers, nursery vouchers, private medical insurance, and Wellhub.
• Opportunity to work with leading top-notch customers.
• Discounts on major brands in textiles, consumer goods, electronics, and travel.
• Free coffee and healthy snacks in offices.
• Global team with language training to connect across cultures.
• Career growth through internal and external certification programs and cybersecurity events.

Hybrid options near our Hub locations in Málaga.