Senior Penetration Consultant

Job description





We are looking for a penetration consultant, who will be responsible for evaluating the security of our platform's IT infrastructure by continuously assessing and exploiting vulnerabilities to find out where hacking threats may lie.



Key responsibilities


·       Plan the penetration test

·       Select, design and create appropriate tools for testing

·       Perform the penetration test on computer systems, networks, web-based and mobile applications

·       Document your methodologies

·       Gather the data intelligence not only from the output of the automated penetration tools but also from information gathered from earlier stages to identify vulnerabilities that the tools may not see

·       Review your findings and feedback to the management

·       Analyse the outcomes and make recommendations for security improvements

·       Carry out application, network, systems and infrastructure penetration tests

·       Review physical security and perform social engineering tests where appropriate

·       Evaluate and select from a range of penetration testing tools

·       Keep up to date with latest testing and ethical hacking methods

·       Deploy the testing methodology and collect data

·       Make suggestions for security improvements

·       Enhance existing methodology material




Job benefits:


  • Attractive USD salary
  • Health insurance via Allianze
  • Monthly Allowance
  • Professional Development Environment


Requirements

·       Good understanding of network protocols

·       Solid technical skills in both information security architecture and penetration testing

·       Ability to assess testing tools and deploy the right ones

·       Project planning skills

·       A solid understanding of ethical hacking

·       Scripting and programming experience is beneficial

·       Excellent report writing and presentation skills

·       Able to work independently but also as part of a team

·       Flexibility to change direction and manage conflicting demands

·       Outstanding organisational and data analytics skills

·       Comfortable working in a fast-paced environment


Qualifications

 

·       Certified Register of Ethical Security Testers (CREST)

·       Cyber-security certifications (CHECK, CTM, CTL, CREST, TIGER, OSCP)

·       A degree in computer security, computer science or equivalent

·       Recognised security testing certifications (GIAC, CEH)


Relevant experience

 

·       Penetration testing experience of systems, web-based applications and networks.

·       Solid knowledge and experience of using a variety of penetration testing or threat modelling tools including open source and commercial mapping

·       Experience of threat reporting and assessing vulnerabilities

·       Scripting skills and reverse engineering experience is desirable

·       Past experience of using problem solving techniques and developing solutions to meet vulnerability threats