Experienced Ethical Hacker – Web Application Analyst

Outpost24 - Karlskrona

KarlskronaOutpost24 is a leading cyber security company focused on enabling its customers to achieve maximum value from their evolving technology investments. By leveraging our full stack security insights to reduce attack surface for any architecture, Outpost24 customers continuously improve their security posture with the least effort. Our headquarters is in Karlskrona, Sweden but we have offices across the globe to cater our clients in over 40 countries.

As ethical hacker/Web application analyst, you will become part of Outpost24’s Ghost Labs team: Outpost24’s ethical hacking team, technically rooted and the core of Outpost24’s hacking activities. We perform all penetration tests, conduct security research and contribute to the security community through responsible disclosure and proof-of-concepts. Do you think that you’ve got what it takes, and would you like to join the Ghosts? Read on!

As IT Security Consultant in the Ghost Labs AppSec team, you are the backbone of our Application Security portfolio . You understand the capabilities as well as the limitations of automation. You offer the human knowledge needed to uncover vulnerabilities in our customers web applications.

Your daily activities involve:
Initial penetration testing (on-boarding) of customers web applications.

Re-occurring penetration testing (re-tests) of the customers continuous monitored web applications.

Mentoring junior team-members.

Responding to customer inquiries.


Further specialisation into a dedicated role, such as: Web application, infrastructure, exploitation, custom tools development, research and content generation.

As ethical hacker, you can think outside of the box and you understand to use your technical skills to improve the security of our customers. You can work independently, but you are also a team player and always keen to keep exploring, developing and learning new things. We will support you in developing yourself and furthering your skills within the cyber security area. We help you evolve through fun off-site activities, Capture the flag events, trainings (on-site and remote), industry leading certifications, such as OSCP, OSWE and OSCE and work trips to conferences.

You have more than 2 years of experience with penetration testing, and you have a great interest in anything digital and security. You understand that technology and security go hand in hand, and you are driven to uncover any possible vulnerability in any web app you can get your hands on. The following likely describes you:

Passionate for technology and security.

Completed relevant University (of applied sciences) degree.

One or more relevant certifications, such as: OSCP, OSCE, CISSP, GPEN, OSWE.

IT Security experience, for example: Penetration testing web applications (including reporting and delivery).

A true team player and self-claimed computer nerd.

Programming/scripting and or network engineering skills.

Professional English communications skills.

Other information:
Do you feel this role is for you? Please don’t hesitate to send in your application as soon as possible.

This position will remain open for application until the role is filled.

As part of the recruitment process you must be able to pass a background check in order to qualify for this position

Outpost24’s values – Knowledge, Innovation and Team – define our corporate culture and our commitment to customers. They influence every aspect of our business and guide us in our ambition to provide maximum value for our customers. By being at the forefront of cyber security through knowledge sharing, training and research, providing innovative and state of the art solutions as well as creating a collaborative environment with customers and partners, we can continue to be an attractive company that strives for the highest potential and to ensure customer success.

Attention - In the recruitment process, legitimate companies never withdraw fees from candidates. If there are companies that attract interview fees, tests, ticket reservations, etc. it is better to avoid it because there are indications of fraud. If you see something suspicious please contact us: [email protected]