Appsec / Penetration Testing

Team
- Security

Location
- Remote/Full-time

About Scalable Solutions
- Since 2013, Scalable Solutions has been at the forefront of the blockchain and digital asset revolution, building secure, scalable, and compliant infrastructure for clients around the world.
- We aim to reshape the future of finance by bringing the most advanced technologies to traditional banks, fintechs, and other financial institutions. Our solutions — from trading platforms to digital asset custody infrastructure — are trusted by some of the largest and most respected players in the industry.
- We believe that blockchain will fundamentally transform how people move money, buy, sell, and shop — and we’re committed to enabling that transformation through cutting-edge products and deep technical expertise.
- We’re looking for highly skilled individuals who share our passion for technology and want to help us build the future of finance — one powerful product at a time.

About the role
- We are looking for a proactive specialist to join our security team.

Job description
- Identifying potential exploitation methods for services and proposing solutions for their mitigation (both blackbox and whitebox).
- Automating the detection and remediation of vulnerabilities in code and infrastructure.
- Researching new security tools available in the market and implementing them to address threats.

**Qualifications**:
Highly preferred:

- Experience as a penetration tester or in web service development.
- Proficiency in at least one programming language and skills in source code analysis (Go, Python, JavaScript, TypeScript).
- Knowledge of attack vectors and methods for protecting web services, as well as an understanding of modern web technologies.
- Experience with Linux systems and Docker.
- Understanding the security challenges associated with large infrastructures, including knowledge of modern attack techniques, penetration vectors, and common solutions.
- Will be a plus:

- Experience participating in CTFs, bug bounty programs, or red team activities.
- Familiarity with WAF, IDS, and IPS systems.
- Knowledge of networking technologies and protocols in Linux (TCP/IP, HTTP, TLS, HTTP Proxying, iptables/nftables).
- Understanding of Ansible, Terraform, and Kubernetes (K8s), along with a solid grasp of the Infrastructure as Code approach.

What we offer
- Work from anywhere — you can work remotely from anywhere in the world or join us in our comfortable office in Tbilisi
- Competitive salary — based on your skills, experience, and professional background
- Flexible time-off — take paid time off and holidays when you need them, with flexibility to suit your schedule
- Partial sport compensation — we support a healthy lifestyle by covering part of your fitness or sports expenses
- Partial education compensation — we help cover the cost of courses, certifications, and other learning opportunities
- Relocation support — we assist with your move to Tbilisi if you decide to relocate
- Lunch compensation — we fully cover daily lunch expenses for our employees in Tbilisi

Compensation range

Our values for applicant
- Smart & Structured thinking
- Intelligent, scholarly and intellectually curious
- Confident and supports perspectives with logical arguments
- Great analytical skills and structured thinking
- Responsibility
- Executes meticulously and completes highly-rated deliverables
- Takes ownership of and full responsibility for results
- Energy & Enthusiasm
- Positive mindset and attitude
- Energy (drive, passion, excitement, active involvement)
- Likes to work hard and take on difficult tasks