Java Script Security Engineer - Web Browser VulnerabilitiesEnglish Required / Based in Lisbon, Portugal / HybridWe are seeking a skilled Java Script and cyber-security professional to analyze, reverse engineer, and secure browser-based applications, with a focus on Web extensions.
The role involves identifying security violations, analyzing malicious behaviour, and contributing to automation and process improvements.Key ResponsibilitiesAnalyze Web extension code through static and dynamic analysis to identify security violations and malicious behaviour.Perform code reverse engineering and debugging, primarily in Java Script-based front-end technologies.Identify, document, and report security vulnerabilities, including affected code and recommended remediation steps.Support the takedown of malicious browser extensions.Identify emerging security patterns and share insights with the team to enhance detection capabilities.Act as a technical consultant, providing guidance, clarification, and technical grooming to team members.Define and implement rules and detection patterns to identify security violations at scale.Recommend and contribute to process improvements and automation to improve efficiency and accuracy.Conduct code reviews and provide constructive feedback aligned with secure coding practices.Collaborate effectively with cross-functional teams and maintain clear technical documentation.You are someone who bringsStrong hands-on experience with Java Script, including advanced concepts such as closures, prototypes, variable scope, hoisting, callbacks, and OOP principles.Proficiency in HTML, CSS, JSON, AJAX, and ES6/ES7 standards.Solid understanding of Node.Js and Webpack.Experience with front-end frameworks or libraries such as React, Angular, or j Query.Strong code reverse engineering and debugging skills, particularly in Java Script applications.Knowledge of web application security, including vulnerability assessment and remediation.Experience or familiarity with DAST and SAST methodologies.Exposure to cybersecurity tools such as Burp Suite, Nmap, or similar open-source tools.Understanding of obfuscation and de-obfuscation techniques (preferred).
Ability to analyze Java Script code to identify malicious activities.Strong experience in writing technical and security assessment reports.BenefitsHigh quality projects.Latest technologies.Learning opportunities.Teamwork support.International team collaboration.Career development plans.Cognizant is an equal-opportunity employer.
Your application and candidacy will not be considered based on race, color, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, state or local laws.