• Perform penetration testing on web applications, networks, and systems to identify security vulnerabilities and weaknesses using both manual and automated tools
• Conduct in-depth analysis of security findings, prioritize risks, and provide detailed recommendations for remediation.
• Develop and execute penetration testing plans, methodologies, and tools in accordance with industry best practices and standards.
• Collaborate with cross-functional teams to implement security controls, mitigate risks, and enhance the overall security posture.
• Document and report security assessment findings, including vulnerabilities, exploitation techniques, and recommended countermeasures.
• Stay abreast of emerging threats, vulnerabilities, and security trends to proactively identify and address potential risks.
• Provide technical expertise and guidance to support incident response activities and security awareness training programs.
• Participating in security monitoring for existing and emerging vulnerabilities in a global environment.
Who you are:
• Possess a Bachelor's degree in Computer Science, Information Technology, or related field; or at least four years of equivalent work experience.
• Have a certificate in Certified Information Systems Security Professional (CISSP), Offensive Security Certified Professional (OSCP), or other relevant certifications preferred.
• Have proven experience in performing penetration testing and vulnerability assessments across a variety of platforms, operating systems,web application frameworks, networks, and cloud environments. Mobile app experience is a plus. Proficient in using penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali Linux.
• Have a strong understanding of common security vulnerabilities and attack vectors, as well as mitigation strategies and best practices.
• Proficient with scripting or programming languages such as Python, Powershell/C#, Bash, and Java. Familiarity with assembly is a plus.
• Knowledge of and demonstrated ability to work within security frameworks and methodologies such as ATT&CK, OWASP, and NIST.
• Effective writing and communication skills, with the ability to clearly articulate technical findings and recommendations to both technical and non-technical stakeholders.
--
You must verify your mobile number to apply to this job.