Security Tester - Information Security

Accounts Recife, PE

About Liferay

Liferay, Inc. is a uniquely profitable B2B enterprise software company with 1,200+ fiery-eyed employees all across Europe, the Americas, the Middle East, Asia, and Africa. As a renowned provider of enterprise open source technologies, we have been recognized by Gartner for empowering businesses around the world to solve complex digital challenges.  Liferay Experience Cloud is an all-in-one solution that unites our Liferay DXP and cloud platform capabilities with built-in analytics and B2B commerce functionality, reducing the time to market and allowing for accelerated innovation - serving notable customers across the globe such as Airbus, US Bank, Honda, and Desjardins.
 
But we don’t just make awesome software, we are also fueled by a greater-than-profit vision. By building a vibrant business, making technology useful, and investing in communities, we make it possible for people to reach their full potential to serve others. We give our employees five days off to volunteer at charities they’re excited about, and Liferay donates 10% of our profits to charities around the world. Oh, we’re also self-funded which gives us the freedom to work on whatever we think brings the most value to customers and communities in the long run!
 
About You and this Role

You're thrilled by the opportunity to run and grow in application security vulnerability testing and management. You possess a passion for weaving innovative ideas into security testing, and you thrive on the challenge of securing complex development processes.
 
Key Objectives
 
  • Work with Engineering teams to secure Liferay DXP and Cloud products and surrounding development processes.
  • Application security testing of Liferay codebases using SAST, DAST, SCA platforms and internal tools.
  • Verification of security reports, private bug bounty program submissions.
 
 Other Responsibilities
 
  • Assist with Liferay information security and awareness
  • Play an active role in the Information Security team
  • Assist with information security certification activities
  • Assist in the preparation of reports from operational data
  • Assist in the the enforcement of organizational development security standards
  • Assist with the preparation of providing services to the sales process
 
 Required Qualifications
 
  • Experience with Testing or QA
  • Experience reading Java and TypeScript code and reproducing issues
  • Bachelor's degree in computer science or equivalent
  • Ability to speak and write English
  • Good communication skills
  • Experience with GitHub, Jira and usual Software Development Lifecycle
  • Available to work in person in Recife

 

 Preferred Qualifications

 

  • Security Vulnerability knowledge
  • Experience testing of applications for security vulnerabilities
  • Experience using security automation and external vendor tools (SAST, DAST, SCA)
  
What We Offer
 
  • Salary package w/ competitive benefits according to qualifications and experience
  • Opportunities to take responsibility, grow professionally, and Stay Nerdy
  • A positive and collaborative work culture
  • Check out what employees say about us on Glassdoor
  • Working at a leading open-source company
  
Equal Opportunities Employer - Statement
 
Liferay is committed to the equal treatment of all candidates, customers and employees and to fostering a culture of dignity at work. Our operating procedure provides for equal opportunities in recruitment and employment with the aim to eliminate discrimination against any job applicant or employee on the basis of race, age, sexual orientation, gender, religion or beliefs, marital or civil partnerships status, family or dependency status, disability, pregnancy and maternity or membership of a traveling community.