Focus on application, API and mobile penetration testing
Deliver comprehensive technical vulnerability reports that clearly outline both technical and business risks, include steps for exploit replication and remediation steps
Support pre-engagement interactions, such as scoping
Work closely with application development teams and follow threat modelling sessions to understand the demands for security assessment
Deliver penetration testing activity within pre-defined deadlines
Investigate security incidents using industry leading security tools
Manage and maintain security tools such as SIEM, EDR, CASB, IDS/IPS and DLP
Collaborate with support teams and business stakeholders to define the use cases for monitoring and improve the overall security posture
Create and maintain both procedures and runbooks that respond and identify security threats
YOU'LL BE SET UP FOR SUCCESS IF YOU HAVE:
Good knowledge of how modern applications are designed, developed and deployed across different platforms
Understanding of SSDLC
Proven industry experience in application and mobile penetration testing
Solid understanding of pentesting methodologies (e.g. OWASP, OSSTMM, PTES)
Knowledge of scripting languages (e.g Python, Bash)
Knowledge of common security products such as SIEM, EDR, Anti-Virus, Firewalls, Web Proxies, DLP and IDS/IPS
Strong knowledge of foundational IT concepts
Experience in security monitoring and threat hunting
Good understanding of different operating systems - Windows/Linux/ MacOS
Able to communicate complex information clearly and logically, both verbally and in writing.
A passion for security
EVEN BETTER IF YOU HAVE:
CREST or TIGER certification
Experience in conducting red team exercises
Experience working in a Media/Broadcasting environment
Experience with scripting/query languages and automation
Sound understanding of Secure Engineering Principles and Standards (ISO27001/PCI/NIST)
Knowledge of JIRA, Confluence, ServiceNow and Microsoft/AWS Security tools
Bring relevant experience and certifications - but none specified.
--
You must verify your mobile number to apply to this job.