Senior Cyber Security Engineer

You are currently viewing Senior Cyber Security Engineer

Description

  • Job DescriptionIn this role, the candidate should conduct offensive security operations to emulate adversary tactics and procedures to test preventative, detective and response controls across the global technology landscape. Candidate should use their expertise to help influence technology decisions and work as part of a team to create consistent approaches to the offensive security processes and techniques.Job Responsibility
  • Conduct highly complex offensive security operations testing consistent with known adversary tactics techniques (APT or Cyber Kill Chain) and procedures and contribute to the development of objectives and approaches taken to remediate risk
  • Document security issues and impacts identified through offensive operations clearly and concisely to facilitate reporting to impacted stakeholders
  • Deliver the annual penetration testing schedule and conducting awareness campaigns to ensure proper budgeting by business lines for annual tests
  • Consult with application developers, systems administrators, and management to demonstrate security testing results, explain the threat presented by the results, and consult on remediation
  • Consult with defensive operations teams on adversary tactics to guide and mature cyber defensive countermeasures
  • Independently handle complex issues with minimal supervision, while escalating only the most challenging issues to appropriate staff
  • Perform penetration tests on Web applications, Network Devices, Mobile applications and API testing
  • Research, evaluate, document and discuss findings with IT teams and management
  • Identify areas where improvement is needed in security education and awareness for users
  • Stay updated on the latest malware and security threats
  • Understand and safely use various open source penetration testing tools and when appropriate, emulating hacker tactics, techniques, procedures
  • Automate penetration and other security testing on networks, systems and applications
  • Produce actionable, threat-based, reports on security testing results
  • Communicate security issues to a wide variety of internal and external “customers” to include technical teams, executives, risk groups, vendors and regulators

Entry Requirements

  • Should possess a Degree in IT/Information security/Telecommunication from a recognized university/institute
  • Information security-related certifications -LPT,CPENT,CEH Master, OSCP,OSEP, eJPT,ePPT,eWPT
  • Minimum 3 years experience in pentest releated area.
    • Network penetration testing and manipulation of network infrastructure
    • Web,Mobile Application Penetration Testing
    • Shell scripting or automation of simple tasks using Perl, Python, or Ruby
    • Developing, extending, or modifying exploits, shellcode or exploit tools
    • Reverse engineering malware, data obfuscators, or ciphers
  • Source code review for control flow and security flaws

Closing Date: 2023/08/31

Apply Now
Share this job
Tags: ,