Security Engineer (Pentester)

Mayflower is a technology company that alters the entertainment industry to a new level of perception and engagement.

We are developing a partner advertising high-load system with a large RPS, convenient and modern interface. We are growing exponentially and successfully implementing new technologies to accelerate this growth and the system as a whole.

Now we look for a Security Engineer to join our team

Job Responsibilities

• Conduct penetration testing of web applications, APIs, and infrastructure to identify security vulnerabilities.

• Perform manual security assessments and advanced exploitation of discovered vulnerabilities.

• Collaborate with engineering and DevOps teams to improve security of applications and infrastructure.

• Prepare detailed penetration testing reports with clear technical descriptions and remediation recommendations.

• Continuously research new attack techniques, vulnerabilities, and security trends.

• Assist in developing and improving internal security testing methodologies and tools.

• Support the implementation of secure development practices within the organization.

Job requirements

• Experience in web application penetration testing.

• Good knowledge of API and network security testing.

• Strong understanding of Linux and web infrastructure.

• Experience with common pentesting tools (Burp, Nmap, Metasploit, sqlmap, ffuf, etc.).

• Understanding of authentication, sessions, and common web vulnerabilities.

• Experience with manual security testing and vulnerability analysis.

• Familiarity with OWASP / PTES / security testing methodologies.

• Ability to write clear vulnerability reports.

• Professional English proficiency.

• Strong analytical mindset with high attention to detail.

• Effective communication, collaboration skills, and strong sense of ownership.

That can be a plus:

• Experience participating in bug bounty programs.

• Experience with automation of security testing using scripting languages such as Python, Go, or Bash.

• Experience with container security testing.

• Experience in red teaming exercises.

• Experience performing infrastructure penetration testing in Linux environments.

• Experience with security research and vulnerability disclosure.

• Contributions to security tools, blogs, or research publications.

• Relevant certifications (optional but beneficial): OSCP, OSWE, eWPT / eWPTX, PNPT, CREST, CEH, GWAPT.

Conditions

We know that great talent deserves great conditions, so here's what you can expect when joining us:

• EU-based employment contract and a 3-year Cyprus work visa with full support for your relocation and visa processes, including assistance for your family.

• Full relocation package: flights to Limassol for you and your family, a company-covered apartment for the first month, and full relocation support to make your move smooth and hassle-free.