Information Technology Security Engineer
@ DevRolls

Lahore, Punjab, Pakistan
$120,000
On Site
Full Time
Posted 6 hours ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXX XXXXXXXXXXXXX XXXXXXXXX***** @devrolls.com
Recommended after applying

Job Details

About Exfiltra

Exfiltra is a cybersecurity startup focused on delivering high-quality application and cloud security services globally. We value curiosity, technical depth, and passion for solving real-world security problems.

Position Overview

The Information Technology Security Engineer role requires hands-on experience in Application Security and Cloud Security. The ideal candidate excels at ethical hacking, vulnerability identification, and building scalable secure solutions.

Key Responsibilities

  • Perform web, API, and cloud security assessments using industry frameworks like OWASP, ASVS, and CIS Benchmarks.
  • Identify, exploit, and report vulnerabilities with actionable remediation.
  • Assist in threat modeling, architecture reviews, and secure design discussions.
  • Improve automation and security testing workflows for integration into CI/CD pipelines.
  • Document findings, build internal knowledge bases, and contribute to team learning.

Requirements

  • 1–3 years in security engineering, appsec, or pentesting roles.
  • Strong grasp of modern web and cloud technologies (AWS, Azure, GCP).
  • Proficiency in at least one scripting language such as Python or Bash.
  • Experience with tools such as Burp Suite, Nmap, and Metasploit.
  • Familiarity with Docker, Kubernetes, and CI/CD pipelines.
  • Participation in CTFs, bug bounty programs, or open-source security research is a plus.
  • Excellent communication and documentation skills.

Why Join Us

Work with a passionate and technically driven team in a fast-paced, learning-rich environment. Gain exposure to global security projects and cutting-edge technologies with opportunities for growth into leadership or specialist roles.

Hiring Process

Our process tests real-world skills through a CTF-style technical challenge, technical interviews focusing on application and cloud security, followed by a final discussion with our leadership team. Only serious candidates should apply.

Key skills/competency

  • cybersecurity
  • application security
  • cloud security
  • ethical hacking
  • vulnerability assessment
  • automation
  • CI/CD
  • pentesting
  • CTF
  • remediation
Apply without a personalized resume

How to Get Hired at DevRolls

🎯 Tips for Getting Hired

  • Tailor your resume: Highlight cybersecurity projects and CTF experience.
  • Showcase technical skills: Emphasize application and cloud security expertise.
  • Review frameworks: Familiarize with OWASP and CIS Benchmarks.
  • Prepare for challenges: Practice CTFs and real-world pentesting tasks.

📝 Interview Preparation Advice

Technical Preparation

Practice using Burp Suite and Nmap.
Review OWASP and CIS Benchmarks.
Brush up on AWS, Azure, GCP basics.
Experiment with Docker and Kubernetes setups.

Behavioral Questions

Describe a recent cybersecurity challenge solved.
Explain your approach when confronted with vulnerabilities.
Discuss teamwork in high-pressure projects.
Share an instance of rapid problem-solving.

Frequently Asked Questions