Skip to main content

Security Testing Engineer

  • Porto, Portugal / PORTUGAL REMOTE, Portugal
  • Technology Group
  • Fixed Term (Fixed Term)

Blip is a top-of-the-edge Portuguese IT company, focused on software engineering solutions for sports betting and gaming. As part of the Flutter Entertainment group, we are an essential piece of the business, delivering safe and entertaining websites, mobile apps, and retail systems for over 7.6 million monthly customers around the globe.    
We bet on people first. That’s why employer branding and flexible practices are cornerstones of our working culture. And our working culture is more than job benefits, it empowers you to come as you are and find the perfect balance between your life and your working challenges. We focus on autonomy, diversity, lifelong learning, and work-life balance.    

The Role

The Flutter UK&I Cyber Security Team is a wide security team, with +100 people, covering a large spectrum of security areas of expertise. Its goal is to provide and ensure that proper security controls are protecting against risk across all businesses within the group. The successful candidate will be part of the Security Testing Team and will have the opportunity to use technical skills and knowledge to identify new vulnerabilities and contribute to Flutter UK&I overall security posture.

What You'll be Doing

The Security Testing Engineer acts as an enabler for the wider Security Team, and aims to ensure the adoption of security practices, detection of security vulnerabilities and mitigations are acted upon the project lifecycle.

You’ll be performing penetration testing for internal components and third-party applications that are used by the company. The overall scope will be mainly web applications . Other responsibilities related to vulnerability testing and exploitation are also part of this role, such as the bug bounty program triage. 

The role involves a collaborative approach in the engagement phase, where you’ll be gathering all required information for the pentest and clearly defining the scope with the stakeholders. It also includes close collaboration with development and infrastructure teams, not only to ensure that the identified vulnerabilities are validated and understood, but also to test the provided patches against other attack vectors.
You’ll be in a Security Testing Engineer mid-level role , leading web applications security assessments including the engagement phase, code review, penetration test, vulnerability reporting&tracking, patching recommendation and support .

To become one of us you should have

  • +1 year experience in penetration testing, demonstrating technical skills to test and review code of applications developed internally and externally, in line with application security best practices, by tracing the execution flow through an application and identifying possible security vulnerabilities;
  • Motivation and soft skills to proactively unblock penetration test requirements, engaging with different stakeholders (technical and non-technical) including developers, product owners and managers;
  • Experience and ability to elaborate self-explanatory penetration testing reports in English, with high quality level, capable of being clearly understood by teams that don’t have security knowledge;
  • Wide security knowledge to provide recommendations to the development teams on how to fix/mitigate a security vulnerability on applications and systems;
  • Motivation and proactivity to keep up with the latest offensive security techniques, promoting self-improvement of soft and technical skills.
  • Good written and verbal communication skills;
  • A team player, who strives to maximize team and departmental performance;
  • Experience in application development;
  • Penetration testing professional certifications such as OSCP, OSWE, eWPTX, etc.
  • Ability to resolve and/or escalate issues in a timely fashion;
  • Knowledge sharing and interest in expanding other team members security skills and mindset;
  • Responsibility and capability to deliver quality work without supervision.


This is what you should have. What do we have, you ask? can check our    amazing perks & benefits    right    here   ! 

So ... Are you in? 

Security Testing Engineer

  • Porto, Portugal / PORTUGAL REMOTE, Portugal
  • Technology Group
  • Fixed Term (Fixed Term)
Apply Now