Security Tester

80–120 tis. Kč
Remote, Hybrid
Praha
Full-time

We’re looking for someone who can challenge our mobile protection features before they reach customers. You’ll test our Mobile In-App Protection product against real-world attack techniques, including hooking, debugging, tampering, reverse engineering, malware behavior, screen sharing, overlays, rooting, and jailbreaking.

What Will You Do?

Test RASP and mobile application protection features in Wultra Mobile In-App Protection before they are released to customers.
Validate detection and response mechanisms for rooting, jailbreaking, debugging, Frida instrumentation, hooking, app repackaging, runtime tampering, screen sharing, overlays, and suspicious malware behavior.
Try to bypass protection mechanisms using real-world mobile security techniques and tools commonly used by attackers.
Cooperate closely with Mobile Reverse Engineers and SDK Developers on new features, regressions, fixes, and release readiness.
Review and challenge features delivered by the mobile security engineering team, including deep-level mobile application protection and RASP functionality.
Prepare structured findings with steps to reproduce, tools used, expected behavior, actual behavior, and severity.
Distinguish product defects from OS limitations, device-specific behavior, test environment issues, or expected product behavior.
Set up and maintain Android and iOS test environments, including clean, rooted, jailbroken, and modified devices.
Maintain internal test applications, scripts, test data, and automation utilities used for repeatable RASP testing.
Help improve security test coverage by maintaining test cases, attack scenarios, regression checks, and technical documentation.

What Are We Looking For?

Experience with mobile application security testing, mobile reverse engineering, penetration testing, or technically oriented security QA.
Good understanding of Android application internals and at least basic knowledge of iOS.
Practical experience with rooted Android devices; experience with jailbroken iOS devices.
Experience with mobile security tools such as Frida, Objection, JADX, apktool, LLDB, GDB, Magisk, Xposed/LSPosed, MobSF, or similar utilities.
Understanding of RASP, anti-tamper, anti-debugging, anti-hooking, obfuscation, runtime protection, and malware detection concepts.
Ability to think from an attacker’s perspective and explore how mobile protection mechanisms could be bypassed.
Basic scripting skills, for example, in Python, Bash, or similar.
Git and basic software development workflow knowledge.
Strong analytical thinking, attention to detail, curiosity, and persistence when investigating unclear technical behavior.
Czech at C1+ level and English at B2+/C1 level — you’ll need to write clear technical documentation, tickets, and test reports.

Bonus Points

Experience with mobile malware analysis or advanced IPA/APK analysis.
Knowledge of Kotlin, Java, Swift, Objective-C, C, or C++.
Experience with CI/CD, automated security testing, OWASP MASVS / MASTG, or mobile test automation.

What Are We Offering?

Powerful company vision and innovative cybersecurity products that help our clients protect millions of users worldwide.
Modern solutions built without legacy issues, proven in the most prestigious industry standards.
The latest MacBook with the top configuration.
Working with AI tools to support development.
Great freedom in when and where you work — results matter more than schedules.
Work on both open-source and closed-source projects.
MultiSport card to help you stay active, recharge, and maintain work-life balance.
Skilled colleagues who help you grow and push boundaries together.
Salary: 80 000 – 120 000 CZK / month (based on experience).

Why to join us?

You’ll work on mobile security technology that protects banking and fintech applications used by millions of people. Your findings will directly influence the quality, reliability, and release readiness of our Mobile In-App Protection product. If you enjoy investigating how things can break, thinking like an attacker, and helping engineers build stronger protection mechanisms, we’d like to hear from you.

👉 Think it’s a fit? Let’s talk — even if you don’t tick every single box.

By sending us your CV, you confirm you have read the information about processing your personal data based on Wultra’s Privacy Policy for Recruitment.

What Will You Do?

Test RASP and mobile application protection features in Wultra Mobile In-App Protection before they are released to customers.
Validate detection and response mechanisms for rooting, jailbreaking, debugging, Frida instrumentation, hooking, app repackaging, runtime tampering, screen sharing, overlays, and suspicious malware behavior.
Try to bypass protection mechanisms using real-world mobile security techniques and tools commonly used by attackers.
Cooperate closely with Mobile Reverse Engineers and SDK Developers on new features, regressions, fixes, and release readiness.
Review and challenge features delivered by the mobile security engineering team, including deep-level mobile application protection and RASP functionality.
Prepare structured findings with steps to reproduce, tools used, expected behavior, actual behavior, and severity.
Distinguish product defects from OS limitations, device-specific behavior, test environment issues, or expected product behavior.
Set up and maintain Android and iOS test environments, including clean, rooted, jailbroken, and modified devices.
Maintain internal test applications, scripts, test data, and automation utilities used for repeatable RASP testing.
Help improve security test coverage by maintaining test cases, attack scenarios, regression checks, and technical documentation.

What Are We Looking For?

Experience with mobile application security testing, mobile reverse engineering, penetration testing, or technically oriented security QA.
Good understanding of Android application internals and at least basic knowledge of iOS.
Practical experience with rooted Android devices; experience with jailbroken iOS devices.
Experience with mobile security tools such as Frida, Objection, JADX, apktool, LLDB, GDB, Magisk, Xposed/LSPosed, MobSF, or similar utilities.
Understanding of RASP, anti-tamper, anti-debugging, anti-hooking, obfuscation, runtime protection, and malware detection concepts.
Ability to think from an attacker’s perspective and explore how mobile protection mechanisms could be bypassed.
Basic scripting skills, for example, in Python, Bash, or similar.
Git and basic software development workflow knowledge.
Strong analytical thinking, attention to detail, curiosity, and persistence when investigating unclear technical behavior.
Czech at C1+ level and English at B2+/C1 level — you’ll need to write clear technical documentation, tickets, and test reports.

Bonus Points

Experience with mobile malware analysis or advanced IPA/APK analysis.
Knowledge of Kotlin, Java, Swift, Objective-C, C, or C++.
Experience with CI/CD, automated security testing, OWASP MASVS / MASTG, or mobile test automation.

What Are We Offering?

Powerful company vision and innovative cybersecurity products that help our clients protect millions of users worldwide.
Modern solutions built without legacy issues, proven in the most prestigious industry standards.
The latest MacBook with the top configuration.
Working with AI tools to support development.
Great freedom in when and where you work — results matter more than schedules.
Work on both open-source and closed-source projects.
MultiSport card to help you stay active, recharge, and maintain work-life balance.
Skilled colleagues who help you grow and push boundaries together.
Salary: 80 000 – 120 000 CZK / month (based on experience).

Why to join us?

👉 Think it’s a fit? Let’s talk — even if you don’t tick every single box.

By sending us your CV, you confirm you have read the information about processing your personal data based on Wultra’s Privacy Policy for Recruitment.

Wultra

Security Tester

What Will You Do?

What Are We Looking For?

Bonus Points

What Are We Offering?

Why to join us?

What Will You Do?

What Are We Looking For?

Bonus Points

What Are We Offering?

Why to join us?

Přihlaste se k newsletteru a posuňte se vpřed!

Přihlaste se k newsletteru a posuňte se vpřed!