Job Description
This job is an Expression of Interest position for future opportunities.
As Cybersecurity Penetration Tester, you will execute a variety of engagements, conducting advanced hands-on penetration testing beyond automated tool validation, which will focus on targets that may include network devices, servers, web and mobile apps, web APIs, wireless infrastructures, IoT devices, and other information systems.
You will have the opportunity to combine technical expertise with your imagination to conduct targeted attacks and discover vulnerabilities.
Responsibilities
- Leads complex technical assessments of security infrastructures to identify and evaluate vulnerabilities, and reflecting relevant cyber threats to the client’s industry and profile
- Conduct threat modeling and attack modeling on the targets of evaluation
- Conduct hardware, mobile and wireless security assessments and infrastructure and server, desktop and web-based application penetration tests
- Write Proof of Concept (PoC) exploit code for vulnerabilities the team has discovered and thoroughly document exploit chain for client consumption
- Conduct social engineering assessments
- Prepare reports according to internal methodology with assessment findings and recommendations
- Perform IT security risk review, based on international IT security standards
- Generate innovative solutions on projects / engagement in collaboration with team members to
Qualifications
- University degree in related field
- 3+ years’ working experience in information security with experience as a penetration tester
- Strong understanding and experience with common penetration testing, vulnerability and threat management methods
- Experience with various security tools and products
- Knowledge of the OWASP methodologies