MaxAB

Founded in 2018, MaxAB is a rapidly growing food and grocery B2B e-commerce and distribution platform that serves a network of traditional retailers (mom-and-pop stores) across the MENA region. Using proprietary technology, MaxAB offers a transformative pull-driven supply chain and a tech-product that empowers both traditional retailers and suppliers. MaxAB offers traditional retailers the simplicity of dealing with one supplier, transparent pricing, on-demand delivery, and a range of value-added and embedded finance solutions. Suppliers benefit from MaxAB’s end-to-end supply chain solutions and business intelligence tools that allow them to accurately predict, monitor, and control the impact of their strategies in real time.

Our MaxAB talent are dedicated to uphold the MaxAB culture and values all while continuing to grow and improve services for our clients. They are innovating new ways to help improve the quality of life of the Egyptian retailer and soon to other retailers globally.

If you are passionate about working hard to make an impact and innovate new solutions, MaxAB is looking for top talent.

Responsibilities:

  • Conduct penetration testing (Web, APIs, Mobile, Cloud)
  • Conduct internal and external red team activities and assess security controls' effectiveness
  • Perform security code reviews, fuzzing, reverse engineering, and penetration test from a Whitebox perspective.
  • Develop security tools and proof of concept of vulnerabilities.
  • Provide recommendations and guidance on security best practices to fix vulnerabilities and enhance security posture.
  • Work closely with cross-functional teams (Engineering, DevOps, DevSecOps, Risk) to discover and address security vulnerabilities.

Experience:

  • 1+ years in penetration testing.
  • Junior penetration tester with a software development background.
  • Experience conducting advanced penetration testing exercises (Web applications, Mobile Applications, APIs, and Cloud)
  • Experience in developing cybersecurity testing tools, and exploits development
  • Experience with one or more programming languages and MVC, preferably: JAVA, Spring Boot, Javascript, PHP, C/C++, Python, GO, etc.
  • Ability to conduct manual source code review and white-box security testing. Familiarity with related tools such as SonarQuber and CodeQL.
  • Familiarity with public security standards and testing methodologies: OWASP top 10 for Mobile, Web, and API. OWASP Application Security Verification Standard (ASVS), MITRE ATT&CK, etc.
  • Familiarity with performing mobile applications assessment (Android) and assessing mobile security controls and backend APIs.

Qualifications:

  • Bachelor's degree in Computer and Information Science, Engineering, or a related field.
  • Having similar training or certification is a plus.
    • The current holder of penetration testing certifications (OSCP, eWAPT, eWAPTx, eMAPT).
  • Excellent spoken and written communication to explain your methods to a technical and non-technical audience.
  • Teamwork skills to support colleagues and share knowledge.
  • Reporting skills
  • Self-driven

%FOOTER_POWERED_BY%breezy