Senior Security Engineer (Penetration Tester)

Job Description

A company is seeking a Senior Security Engineer (Penetration Tester) to join their team in Taipei, Taiwan. The ideal candidate will have solid programming experience and a strong foundation in identifying, analyzing, and remediating vulnerabilities across applications, networks, and systems. This role involves penetration testing, developing security tooling, and providing technical advice during forensic investigations.

What this role involves:

• Conducting penetration tests on internal and external systems, applications, and infrastructure.
• Developing, improving, and maintaining custom security tools for internal use.
• Providing technical expertise and guidance during forensic investigations and incident analysis.
• Documenting test results and forensic findings with actionable recommendations.
• Collaborating with engineering, infrastructure, and compliance teams to drive security improvements.
• Staying informed of current security trends, vulnerabilities, and exploits.

Requirements:

• Bachelor's or Master's degree in Computer Science, Information Security, or related fields.
• Solid programming skills (e.g., Golang, Python, JavaScript, or others).
• Proven experience in penetration testing (web, mobile, and/or network).
• Certifications such as OSCP or CREST are mandatory.
• Knowledge of security frameworks (e.g., OWASP Top 10, NIST, CIS).
• Ability to analyze incidents and provide forensic guidance.
• Strong problem-solving and communication skills.

What this role offers:

• Familiarity with Golang is a plus.
• Experience in code review, secure coding practices, and threat modeling.
• Additional certifications such as OSCE, CEH, or GCIH.
• Experience with CI/CD integration for security tools or automated testing.
• Exposure to cloud or container security (AWS, GCP, Docker, Kubernetes).
• Involvement in CTFs, bug bounties, or open-source security projects.