Cybersecurity Specialist

Neoshore is a company specializing in the development and integration of innovative technological solutions for international clients. We assist our partners in the design, deployment, and optimization of their cloud infrastructures, with a focus on performance, reliability, and security.

We are looking for an experienced Cybersecurity Specialist to secure and protect financial activities platform. The system serves thousands of users and handles sensitive financial data. The platform is built using Laravel, Livewire, React, MySQL, Linux servers, AWS, and DigitalOcean, with multiple third-party API integrations.

The ideal candidate will be responsible for identifying security risks, performing penetration testing, improving system security, and ensuring compliance with best security practices.

Key Responsibilities

• Perform regular security audits on web applications, APIs, servers, and cloud infrastructure
• Conduct black box, grey box, and white box penetration testing
• Identify vulnerabilities in Laravel, Livewire, React, MySQL, and Linux environments
• Secure REST APIs and third-party API integrations
• Monitor and prevent common attacks such as SQL injection, XSS, CSRF, SSRF, and API abuse
• Review application source code for security weaknesses
• Implement security best practices for authentication, authorization, encryption, and session management
• Harden Linux servers and cloud environments on AWS and DigitalOcean
• Set up and manage firewalls, WAF, intrusion detection, and monitoring tools
• Ensure data protection and secure handling of financial and user data
• Prepare security reports with clear risk assessments and recommendations
• Assist in incident response, breach investigation, and recovery if needed
• Stay updated with the latest cybersecurity threats, tools, and compliance standards

Required Skills and Experience

• Proven experience as a Cybersecurity Specialist or Application Security Engineer
• Strong knowledge of web application security and OWASP Top 10
• Hands-on experience with penetration testing tools and methodologies
• Strong understanding of Laravel and modern JavaScript frameworks like React
• Experience securing MySQL databases and Linux servers
• Solid experience with cloud security on AWS and DigitalOcean
• Experience securing API-based architectures
• Knowledge of encryption standards, secure authentication methods, and key management
• Ability to document findings clearly and explain risks to technical and non-technical teams

Nice to Have

• Experience with financial or fintech platforms
• Knowledge of compliance standards such as PCI-DSS, ISO 27001, GDPR, DORA
• Experience with CI/CD security and DevSecOps practices
• Relevant security certifications (CEH, OSCP, CISSP, or similar)