Senior Cyber Security Engineer

Dialog Axiata PLC
16 days ago
0 Applied
Expires on: Dec 13 2022

Ref.No 00001400

Description

Entry Requirements

  • Should possess a Degree in IT/Information security/Telecommunication from a recognized university/institute
  • Information security-related certifications -LPT,CPENT,CEH Master, OSCP,OSEP, eJPT,ePPT,eWPT
  • Minimum 3 years experience in pentest related area.
  • Network penetration testing and manipulation of network infrastructure
  • Web,Mobile Application Penetration Testing
  • Shell scripting or automation of simple tasks using Perl, Python, or Ruby
  • Developing, extending, or modifying exploits, shellcode or exploit tools
  • Reverse engineering malware, data obfuscators, or ciphers
  • Source code review for control flow and security flaws
Responsibilities
  • Conduct highly complex offensive security operations testing consistent with known adversary tactics techniques (APT or Cyber Kill Chain) and procedures and contribute to the development of objectives and approaches taken to remediate risk
  • Document security issues and impacts identified through offensive operations clearly and concisely to facilitate reporting to impacted stakeholders
  • Deliver the annual penetration testing schedule and conducting awareness campaigns to ensure proper budgeting by business lines for annual tests
  • Consult with application developers, systems administrators, and management to demonstrate security testing results, explain the threat presented by the results, and consult on remediation
  • Consult with defensive operations teams on adversary tactics to guide and mature cyber defensive countermeasures
  • Independently handle complex issues with minimal supervision, while escalating only the most challenging issues to appropriate staff
  • Perform penetration tests on Web applications, Network Devices, Mobile applications and API testing
  • Research, evaluate, document and discuss findings with IT teams and management
  • Identify areas where improvement is needed in security education and awareness for users
  • Stay updated on the latest malware and security threats
  • Understand and safely use various open source penetration testing tools and when appropriate, emulating hacker tactics, techniques, procedures
  • Automate penetration and other security testing on networks, systems and applications
  • Produce actionable, threat-based, reports on security testing results
  • Communicate security issues to a wide variety of internal and external “customers” to include technical teams, executives, risk groups, vendors and regulators
Skills
Cyber security
Network penetration testing
network infrastructure
Shell scripting
Industry Sector