Pentester Mexico in Uber

Cornershop by Uber is an on-demand grocery app that gives you free time, while your groceries and errands are delivered right to your door. We're a fast growing company operating throughout Latin America and North America, and since our acquisition by Uber, we just keep getting bigger. Relaunched under our new brand name. Cornershop by Uber, we’re looking to avoca-grow our team. So, if you want to work in an innovative environment, with a startup footprint, people who live for bad jokes and dad humor, you've come to the right place!

How many engineers does it take to build an app that simplifies grocery shopping for users? At least 600, because that’s how many we have in our Engineering team, working from different countries in South and North America. The Engineering team is dedicated to producing intuitive technology for customers, shoppers and stores and solving challenges along the way.

The engineering team is dedicated to producing intuitive technology for customers, Shoppers and stores alike, while using technology and creativity to solve challenges along the way. That's why we're looking for our new Pentester: a proactive, security-savvy person to help us protect our users' data and promote a culture of security across the company.

• Perform technical security assessments on Cornershop by Uber's various systems.
• Generate reports for different internal teams and provide clear and accurate explanations about any problems encountered while working together with teams in charge of proposing solutions or mitigating problems.
• Validate reports from our Bug Bounty program, which will allow you to interact with world-renowned hackers.
• Work together with other Pentesters to perform different internal Red Team exercises and report the results to the engineering team.

• Familiarity with the world of offensive security including conducting Red/Blue Team exercises.
• Knowledge of security and a desire to analyze mobile applications.
• Ability to clearly and accurately communicate any problems encountered to the responsible teams.
• Experience in vulnerability detection.
• Passion for learning how to use tools such as Burp Suite, OWASP ZAP, SQLmap, Metasploit, Mobile Security Framework (MobSF), Android Debug Bridge, QARK, Frida Framework or similar.
• Experience generating technical security reports.
• Ability to work proactively, responsibly, and creatively.
• Motivation when faced by challenges and a drive to learn independently.
• Ability to converse and write in English.

• Eat, sleep and breath thinking about how to hack into a device.
• Have experience working with Python, Javascript, Java, Kotlin, Swift, Objective-C or similar languages.
• Are knowledgeable in penetration testing in web environments.
• Have Security+, CEH, and OSCP certifications, among others.
• Are passionate about penetration testing in mobile apps and want to specialize in mobile hacking.
• Have Infrastructure Pentesting experience, in AWS, GCP, K8s (kubernetes), etc.

- Additional vacation time

- Cornershop Pop subscription

- Health, dental, and life insurance

- Tech platform to enhance your knowledge (O'Reilly)

- Free language lessons

- Online fitness programs

- Moving day (two days per year)

- Marriage or civil union benefits (days off)

- Paternity/maternity benefits

- Wellness programs