All job applicants must undergo an extensive assessment process to prove their technical capabilities and human values, as well as a security process.
The assessment involves the following:
A technical interview
Pentesting applicants only: A practical interview with the VP of Hacking, where the applicant is asked to solve challenges of different categories (e.g., secure code review, mobile and web application testing, reverse engineering)
Development applicants only: A practical interview with the Head of Engineering, where the applicant is asked to solve challenges of different categories (e.g., testing, Python, design, Git)
A general knowledge exam (for pentesting and development applicants only)
Specific knowledge tests
A typing speed test (for pentesting, development and analytics applicants only)
An English proficiency test
At least two nontechnical interviews
Role-specific practical tests (for applicants in sales, legal, finance, technical writing, and design areas only)
The human values section of the assessment process includes asking the candidate to create a portfolio with their five most important achievements.
The security process involves background checks, polygraph tests, and online domiciliary visits.
Qualified candidates then proceed to complete Fluid Attacks' training plan. The latter involves pre-entry certifications and training in secure coding and code review.