Penetration Tester

Genesys • Full-time • Virtual Office (Ireland), Ireland • 1d ago

Why This Job is Featured on The SaaS Jobs

Why this Role is Featured on The SaaS Jobs

Product security roles are increasingly central to modern SaaS, and this one sits close to the surface area that customers and attackers both see: web apps, mobile apps, public APIs, and the realities of multi-tenant cloud architecture. Genesys Cloud is positioned as a cloud-native platform on AWS with AI-enabled capabilities, which makes offensive testing especially relevant to how SaaS products evolve and ship features.

From a career standpoint, the combination of hands-on penetration testing and end-to-end bug bounty ownership maps well to how mature SaaS security programs operate. Managing triage, researcher communication, severity alignment, and remediation flow builds judgment that transfers across SaaS companies where coordinated disclosure and continuous delivery are the norm. The remit also touches tenant isolation, authorization, and API abuse patterns, which are recurring themes in subscription platforms at scale.

The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.

Job Description

Genesys empowers organizations of all sizes to improve loyalty and business outcomes by creating the best experiences for their customers and employees. Through Genesys Cloud, the AI-powered Experience Orchestration platform, organizations can accelerate growth by delivering empathetic, personalized experiences at scale to drive customer loyalty, workforce engagement, efficiency and operational improvements.

We employ more than 6,000 people across the globe who embrace empathy and cultivate collaboration to succeed. And, while we offer great benefits and perks like larger tech companies, our employees have the independence to make a larger impact on the company and take ownership of their work. Join the team and create the future of customer experience together.

Job Title: Penetration Tester
Department: Product Security
Location: Remote (Ireland)

Genesys Cloud Product Security is hiring a penetration tester focused on product-level offensive security. This role centers on identifying and helping remediate vulnerabilities across Genesys Cloud’s web and mobile applications, public APIs, and supporting infrastructure, while owning our bug bounty program end-to-end.

Genesys Cloud is a cloud-native, multi-tenant SaaS platform on AWS, with modern web experiences, extensive APIs, and rapidly growing AI capabilities. This role suits a hands-on tester who can independently deliver meaningful assessments today and grow into a senior product security role. You’ll leverage AI-assisted workflows and contribute to securing AI-enabled features. AI experience is a plus, but strong web/API security fundamentals and curiosity are key.

What you’ll do

Product Security Testing

Perform manual penetration testing across web apps, APIs, and infrastructure
Assess auth/authz, tenant isolation, input validation, business logic, and data exposure risks
Identify issues beyond automated scanning, especially in modern UI/API-driven flows
Develop clear PoCs, validate findings, and retest fixes
Improve testing playbooks, tooling, and repeatable practices

Bug Bounty Program

Own day-to-day management: scope, policies, rewards, and researcher engagement
Triage submissions, validate impact, align severity, and track remediation
Partner with engineering to route and resolve findings
Maintain high-quality communication with external researchers

Cloud & Platform Security

Evaluate attack paths in a multi-tenant AWS environment
Understand architecture, trust boundaries, and service interactions
Identify weaknesses in API usage, input handling, and access controls
Contribute to security reviews with an attacker mindset

AI & Emerging Risk Areas

Use AI-assisted workflows to enhance testing and analysis
Assess AI-enabled features for risks like prompt injection, data leakage, and misuse
Ensure AI features respect tenant boundaries and authorization controls

Collaboration & Communication

Work closely with engineers to deliver actionable remediation guidance
Produce clear, high-quality reports
Operate effectively in a distributed, collaborative team

What you’ll bring

~3+ years in penetration testing, application/product security, or similar
Strong hands-on experience testing web applications and APIs
Solid understanding of common vulnerabilities (auth flaws, injection, business logic, multi-tenant risks)
Proficiency with tools like Burp Suite, dev tools, and scripting
Knowledge of auth mechanisms (cookies, tokens, OAuth, sessions)
Familiarity with cloud-native systems and AWS fundamentals
Strong communication and problem-solving skills
Ability to work independently and own testing and bug bounty workflows

Nice to have (or willingness to learn)

Experience with SaaS or large-scale customer-facing platforms
Knowledge of AWS, microservices, and event-driven systems
API security testing at scale (auth abuse, rate limits, data exposure)
Understanding of modern front-end architectures
Exposure to AI/LLM security risks
Basic coding/scripting (Python, JS/TS, Java, etc.)
CI/CD, security automation, or threat modeling experience
Prior bug bounty program involvement

Technologies

AWS and cloud-native architectures
Modern web apps and public APIs (REST, OAuth)
Distributed, multi-tenant SaaS systems
Automation and AI-assisted workflows
AI-enabled product features
Bug bounty and coordinated disclosure programs

Our Benefits

At Genesys, we’re committed to supporting your well-being, growth, and work–life balance. Our comprehensive benefits package includes:

Flexible work options – Choose what works for you with hybrid schedules, work-from-home flexibility, and the option to collaborate onsite in our state-of-the-art Galway office.
Career development & growth – Access continuous learning opportunities, mentoring, and clear paths for advancement.
Competitive pension scheme – Invest in your future with an excellent employer-supported pension plan.
Annual bonus program – Be rewarded for your impact and contributions.
Comprehensive health coverage – Including private healthinsurance, accessto company dental plan, andwellness supports.
Financial protection – Enjoy Income Protection and Life Assurance, along with access to dedicated financial planning resources to help you make confident, informed decisions about your future.
Family-friendly policies – Generous paid maternity and paternity leave, along with supportive leave options designed for every stage of life.

If a Genesys employee referred you, please use the link they sent you to apply.

About Genesys:

Genesys® empowers more than 8,000 organizations worldwide to create the best customer and employee experiences. With agentic AI at its core, Genesys Cloud™ is the AI-Powered Experience Orchestration platform that connects people, systems, data and AI across the enterprise. As a result, organizations can drive customer loyalty, growth and retention while increasing operational efficiency and teamwork across human and AI workforces. To learn more, visit www.genesys.com.

Reasonable Accommodations:

If you require a reasonable accommodation to complete any part of the application process, or are limited in your ability to access or use this online application and need an alternative method for applying, you or someone you know may contact us at reasonable.accommodations@genesys.com.

You can expect a response within 24–48 hours. To help us provide the best support, click the email link above to open a pre-filled message and complete the requested information before sending. If you have any questions, please include them in your email.

This email is intended to support job seekers requesting accommodations. Messages unrelated to accommodation—such as application follow-ups or resume submissions—may not receive a response.

Genesys is an equal opportunity employer committed to fairness in the workplace. We evaluate qualified applicants without regard to race, color, age, religion, sex, sexual orientation, gender identity or expression, marital status, domestic partner status, national origin, genetics, disability, military and veteran status, and other protected characteristics.