Penetration Tester Jobs

Job Responsibilities :

• Ensure threats can be prevented by applying appropriate methods and measures
• Develop multi-layer mechanism protections in protecting production systems
• Create, implement and maintain policies, standards and procedures that support the information security framework in accordance with best practice and applicable regulations
• Monitor follow-up for risk control and information security
• Carry out regular evaluations of the implementation of IT Security Management policies, standards and procedures
• Build an information security framework and architecture in accordance with the Company's needs
• Keep abreast of new threats and vulnerabilities, developing appropriate counter-measure responses
• Assess risk levels, develop and recommend appropriate mitigation counter-measures
• Develop applications and drive the software development life-cycle for security aspects
• Proactively assess, communicate, and manage cyber risks, including critical system maintenance.
• Collaboration and Advisory
• Determines deviations from acceptable security configurations
• Ensure the strategy and implementation of information security in accordance with the needs and applicable regulations regarding Networks, Tools and Application Development
• Actively identify, analyze, measure, and provide control recommendations
• Other ad-hoc assignments as per direct supervisor's request.
• Develop comprehensive cyber security and risk management processes for infrastructure and operations
• Conduct assessments of security threats and vulnerabilities;

Requirements :

• Possesses one (or more) of the following security certifications: CISSP / CEH / CISA / CISM / ISMS
• Experience in implementing best practice and regulations for IT Security, including ISO 27001, CIS, NIST, GDPR
• Able to work both on own and proactively as part of a team
• Bachelor Degree in IT Security, Computer Science, Programming or similar
• Open in nature and a clear, timely communicator
• High level of integrity and professionalism is non-negotiable
• Experienced in managing security vulnerabilities, penetration testing and incident responses
• Responds well under pressure and deadline oriented.
• Fluency in English (written and spoken) - C1 Advanced EF SET
• Minimum 3 years’ experience in the same role
• Understands Secure Development Life Cycle, DevSecOps framework, and Secure Cloud Architecture
• Mastery of SIEM, Vulnerability Management, and Application Security Testing solutions
• Understands the work logic of a range of IT Security Tools and IT Security Devices
• Strong planning and project management skills
• Expertise in testing of IT Security with a range of IT Security tools
• Experienced in log monitoring, management, and reporting.
• Lead Auditor in Certification will be an advantage
• Exhibiting a can-do attitude and able to show initiative in order to get things done.