Join our Delta Hats (Native Spanish Speakers Freelancers)
Delta Protect
At Delta Protect we simplify and automate Cybersecurity and Compliance for startups and SMEs in Mexico and Latam, automating certifications such as ISO 27001, PCI DSS, SOC 2, HIPAA accompanied by Pentesting, Vulnerability Analysis and Cyber Intelligence. 🚀
From Micro-enterprises, to unicorns 🦄 we believe that Cybersecurity and Compliance is for everyone.
- + More than 150 companies trust us 🔒.
- + 15 industries we love to work with 🤝
- + 7 countries where our customers are located 🌎
- + 600 critical vulnerabilities detected and corrected 💪
- + 1M of exposed data detected in the Dark Web 👁
Our RedTeam
Delta Protect's Red Team is responsible for conducting offensive security assessments, such as Penetration Testing, Vulnerability Analysis and Red Teaming Exercises, to identify as many vulnerabilities as possible in our clients' technology infrastructure. Our team of CISOs, Specialists, Ethical Hackers and Developers have over 25 years of cybersecurity experience and industry certifications.
How does the process work?
- Apply in our application form 📩
- In case your profile matches the vacancy, we will have a video call to get to know each other🤝.
- Once the video call is over, you will receive a challenge ⚙️.
- We would have a video call for you to explain how you solved the challenge 💡
- Then you will have to answer a Psychometric Test and an interview with the Head of People & Culture 🚀.
- Once you complete the above steps, the following documentation will be requested:
-A valid official ID (preferably a passport)
-Proof of residency in the country where you reside.
-Proof of being an active taxpayer in the country where you reside.
Freelance Responsibilities:
- Perform penetration testing based on your expertise (web applications, APIs, networks, mobile applications, cloud, heavy applications and source code review) to identify vulnerabilities and security issues.
- Perform comprehensive safety assessments using both manual and automated techniques.
- Identify and exploit vulnerabilities to simulate real cyber attacks and assess the security posture of systems.
- Generate reports of findings that are easy to understand and well structured.
- Conduct re-testing exercises to ensure that applications and systems are secure, validating that vulnerabilities have been satisfactorily corrected.
- When requested by the client, attend meetings to review reports and provide feedback.
- Conduct technical surveys to understand in detail the technological infrastructure of our clients.
- Review requirements, specifications and technical documents to provide reasoned and timely comments.
- Report progress on relevant findings to management and other stakeholders.
- Keep up to date with the latest security trends, tools and techniques to continuously improve penetration testing methodologies.
What we are looking for
- We are looking for a native Spanish speaker with fluent English, currently residing in Latin America.
- Proficient in performing full penetration testing in different domains depending on your experience (web applications, APIs, networks, mobile applications, cloud, heavy applications and source code review).
- Solid understanding of common vulnerabilities, attack vectors and exploitation techniques.
- Experience using manual and automated testing methodologies to identify and exploit security weaknesses.
- Familiarity with industry-recognized penetration testing frameworks such as OWASP, PTES, NIST, OSSTMM, among others.
- Knowledge of regulatory compliance requirements and industry standards related to information security (e.g. GDPR, PCI DSS, HIPAA).
- Strong troubleshooting skills and attention to detail to identify complex vulnerabilities and security weaknesses.
- Ability to work independently and as part of a team, manage time effectively and prioritize tasks to meet project deadlines.
- Commitment to ethical conduct and adherence to professional standards in penetration testing engagements.
- 3+ years of experience as a pentester. Proven track record of performing successful penetration testing in your area(s) of expertise (web applications, APIs, networking, mobile applications, heavy applications, cloud (AWS, GCP, Azure) and source code review).
Certifications: Possession of relevant industry certifications, such as:
- Certified Ethical Hacker (CEH)
- Offensive Security Certified Professional (OSCP)
- Foundational Wireless Network Attacks (OSWP)
- Offensive Security Advanced Web Attacks and Exploitation (OSWE)
- GIAC Penetration Tester (GPEN)
- Certified Information Systems Security Professional (CISSP)
- EC-Council Certified Security Analyst (ECSA)
- Web Application Penetration Tester Extreme (eWPTXv2)
- Certified Professional Penetration Tester (eCPPTv2)
- Mobile Application Penetration Tester (eMAPT)