Benefits 

  • ​Training & Self Development Program
  • Business Trip Allowance
  • Unlimited drinks, coffee, tea, & snacks
  • Sports Activity

Responsibilities 

  • Perform formal penetration tests on web-based applications, networks and computer systems
  • Plan the penetration test.
  • Reporting to QA Lead
  • Perform the penetration test on computer systems, networks, web-based and mobile applications.
  • Design and create new penetration tools and tests
  • Probe for vulnerabilities in web applications, fat/thin client applications and standard applications
  • Pinpoint methods that attackers could use to exploit weaknesses and logic flaws
  • Employ social engineering to uncover security holes (e.g. poor user security practices or password policies)
  • Incorporate business considerations (e.g. loss of earnings due to downtime, cost of engagement, etc.) into security strategies
  • Research, document and discuss security findings with management and IT teams
  • Review and define requirements for information security solutions
  • Work on improvements for security services, including the continuous enhancement of existing methodology material and supporting assets
  • Provide feedback and verification as an organization fixes security issues
  • Simulated attacks on networks, firewalls, operating systems and web applications.
  • Seeking to build in security during the development stages of software systems, networks and data centres.
  • Carry out application, network, systems and infrastructure penetration tests.
  • Evaluate and select from a range of penetration testing tools
  • Keep up to date with latest testing and ethical hacking methods

Requirements 

  • Bachelor degree in Computer Science / Engineering or equivalent.
  • With experience 3 - 4 years of IT Security ,or have knowledge about Penetration Test
  • Experienced using various tools for penetration and can apply is an added value
  • Know and implement basic penetration test
  • Have one of certificate CEH (LPT will be a clear advantage), ISO 27001, DRP, PCI ISA (QSA will be a clear advantage) is a point plus
  • Experience in programming logic and have broad insight
  • Strong analytical and planning skills.
  • Good communication and presentation skills.
  • Excellent problem-solving skills.
  • Proactive and self-driven to go above and beyond their tasks, with a strong attention to details.
  • Solid technical skills in both information security architecture and penetration testing
  • Ability to assess testing tools and deploy the right ones
  • Good understanding of network protocols
  • Able to work independently but also as part of a team
  • Comfortable working in a fast-paced environment
  • Experience in Penetration testing experience of systems, web-based applications and networks.
  • Experience of threat reporting and assessing vulnerabilities


Tags: AWS and QA & Testers