HiringCafe
Posted 2d ago

Penetration Tester

@ Genesys
View All Jobs
Ireland
RemoteFull Time
Responsibilities:Penetration testing, Test APIs, Collaborate engineers
Requirements Summary:3+ years in penetration testing; strong web app/API testing; knowledge of common vulnerabilities; Burp Suite and scripting proficiency; cloud/AWS familiarity.
Technical Tools Mentioned:Burp Suite, DevTools, Scripting, AWS, OAuth
Save
Mark Applied
Hide Job
Report & Hide
Job Description

Genesys empowers organizations of all sizes to improve loyalty and business outcomes by creating the best experiences for their customers and employees. Through Genesys Cloud, the AI-powered Experience Orchestration platform, organizations can accelerate growth by delivering empathetic, personalized experiences at scale to drive customer loyalty, workforce engagement, efficiency and operational improvements.

We employ more than 6,000 people across the globe who embrace empathy and cultivate collaboration to succeed. And, while we offer great benefits and perks like larger tech companies, our employees have the independence to make a larger impact on the company and take ownership of their work. Join the team and create the future of customer experience together.

Job Title: Penetration Tester
Department: Product Security
Location: Remote (Ireland)

Genesys Cloud Product Security is hiring a penetration tester focused on product-level offensive security. This role centers on identifying and helping remediate vulnerabilities across Genesys Cloud’s web and mobile applications, public APIs, and supporting infrastructure, while owning our bug bounty program end-to-end.

Genesys Cloud is a cloud-native, multi-tenant SaaS platform on AWS, with modern web experiences, extensive APIs, and rapidly growing AI capabilities. This role suits a hands-on tester who can independently deliver meaningful assessments today and grow into a senior product security role. You’ll leverage AI-assisted workflows and contribute to securing AI-enabled features. AI experience is a plus, but strong web/API security fundamentals and curiosity are key.

What you’ll do

Product Security Testing

  • Perform manual penetration testing across web apps, APIs, and infrastructure
  • Assess auth/authz, tenant isolation, input validation, business logic, and data exposure risks
  • Identify issues beyond automated scanning, especially in modern UI/API-driven flows
  • Develop clear PoCs, validate findings, and retest fixes
  • Improve testing playbooks, tooling, and repeatable practices

Bug Bounty Program

  • Own day-to-day management: scope, policies, rewards, and researcher engagement
  • Triage submissions, validate impact, align severity, and track remediation
  • Partner with engineering to route and resolve findings
  • Maintain high-quality communication with external researchers

Cloud & Platform Security

  • Evaluate attack paths in a multi-tenant AWS environment
  • Understand architecture, trust boundaries, and service interactions
  • Identify weaknesses in API usage, input handling, and access controls
  • Contribute to security reviews with an attacker mindset

AI & Emerging Risk Areas

  • Use AI-assisted workflows to enhance testing and analysis
  • Assess AI-enabled features for risks like prompt injection, data leakage, and misuse
  • Ensure AI features respect tenant boundaries and authorization controls

Collaboration & Communication

  • Work closely with engineers to deliver actionable remediation guidance
  • Produce clear, high-quality reports
  • Operate effectively in a distributed, collaborative team

What you’ll bring

  • ~3+ years in penetration testing, application/product security, or similar
  • Strong hands-on experience testing web applications and APIs
  • Solid understanding of common vulnerabilities (auth flaws, injection, business logic, multi-tenant risks)
  • Proficiency with tools like Burp Suite, dev tools, and scripting
  • Knowledge of auth mechanisms (cookies, tokens, OAuth, sessions)
  • Familiarity with cloud-native systems and AWS fundamentals
  • Strong communication and problem-solving skills
  • Ability to work independently and own testing and bug bounty workflows

Nice to have (or willingness to learn)

  • Experience with SaaS or large-scale customer-facing platforms
  • Knowledge of AWS, microservices, and event-driven systems
  • API security testing at scale (auth abuse, rate limits, data exposure)
  • Understanding of modern front-end architectures
  • Exposure to AI/LLM security risks
  • Basic coding/scripting (Python, JS/TS, Java, etc.)
  • CI/CD, security automation, or threat modeling experience
  • Prior bug bounty program involvement

Technologies

  • AWS and cloud-native architectures
  • Modern web apps and public APIs (REST, OAuth)
  • Distributed, multi-tenant SaaS systems
  • Automation and AI-assisted workflows
  • AI-enabled product features
  • Bug bounty and coordinated disclosure programs

Our Benefits

At Genesys, we’re committed to supporting your well-being, growth, and work–life balance. Our comprehensive benefits package includes:

  • Flexible work options – Choose what works for you with hybrid schedules, work-from-home flexibility, and the option to collaborate onsite in our state-of-the-art Galway office.

  • Career development & growth – Access continuous learning opportunities, mentoring, and clear paths for advancement.

  • Competitive pension scheme – Invest in your future with an excellent employer-supported pension plan.

  • Annual bonus program – Be rewarded for your impact and contributions.

  • Comprehensive health coverage – Including private health insurance, access to company dental plan, and wellness supports.

  • Financial protection – Enjoy Income Protection and Life Assurance, along with access to dedicated financial planning resources to help you make confident, informed decisions about your future.

  • Family-friendly policies – Generous paid maternity and paternity leave, along with supportive leave options designed for every stage of life.

If a Genesys employee referred you, please use the link they sent you to apply.

About Genesys:

Genesys® empowers more than 8,000 organizations worldwide to create the best customer and employee experiences. With agentic AI at its core, Genesys Cloud™ is the AI-Powered Experience Orchestration platform that connects people, systems, data and AI across the enterprise. As a result, organizations can drive customer loyalty, growth and retention while increasing operational efficiency and teamwork across human and AI workforces. To learn more, visit www.genesys.com.

Reasonable Accommodations:

If you require a reasonable accommodation to complete any part of the application process, or are limited in your ability to access or use this online application and need an alternative method for applying, you or someone you know may contact us at [email protected].

You can expect a response within 24–48 hours. To help us provide the best support, click the email link above to open a pre-filled message and complete the requested information before sending. If you have any questions, please include them in your email.

This email is intended to support job seekers requesting accommodations. Messages unrelated to accommodation—such as application follow-ups or resume submissions—may not receive a response.

Genesys is an equal opportunity employer committed to fairness in the workplace. We evaluate qualified applicants without regard to race, color, age, religion, sex, sexual orientation, gender identity or expression, marital status, domestic partner status, national origin, genetics, disability, military and veteran status, and other protected characteristics.

Please note that recruiters will never ask for sensitive personal or financial information during the application phase.