As a Senior Penetration Test Operator in our Products and Services Red Team, you will have the opportunity to apply your outsider mindset , cybersecurity skills, and experiences to mission-critical products and services.
You will be positioned as a technical leader in the Red Team as a subject matter expert in your area of specialization like web applications, cloud apps and services, wireless protocols, embedded devices, IOT / IIOT, mobile applications, and operating systems.
Work with all parts of the company to drive a cybersecurity culture, establish meaningful relationships and directly influence the way we create secure market-leading products.
Your day to day responsibilities will include the following :
Planning and execution of penetration tests
Documentation and report writing
Data, code, and vulnerability analysis
Tool and Script development
Collaboration with Development
Team to mentor less experienced Red Team members
Research and Training.
Bachelor's degree or equivalent work experience and / or Military service
5 to 7+ years of substantive IT knowledge
3 to 5+ years of active hands-on experience and expertise with penetration testing / ethical hacking as a primary responsibility
The ability to lead a penetration testing project or team independently, for the full project lifecycle
General Skills :
Strong written and verbal communication skills
Effective collaboration and team integration
Problem-solving abilities through imaginative and creative thinking
The ability to deal with ambiguity and adapt to ad hoc tasks
Be able to self-identify tasks and needs to start work independently
Maintain an insatiable curiosity and an aggressive outsider mindset
Technical Skills :
Familiarity with Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP), and National Institute of Standards and Technology (NIST) Special Publications
Good working knowledge of Mitre ATT&CK and Cyber Kill Chain
The ability to perform penetration testing activities on Web Applications
The ability to perform penetration testing activities on Cloud Applications and Infrastructure
The ability to perform penetration testing activities on Mobile Operating Systems and Applications.
The ability to perform penetration testing activities on IoT / IIOT devices.
Qualifications / Certifications :
One or more of the following : OSCP. OSCE, GXPN, GWAPT, GAWN, GMOB
What we are offering you :
In return for your expertise, we’ll support you in this new challenge with coaching & development every step on the way.
Also, to reward your hard work you’ll get :
Competitive salary package,
Private medical & dental coverage,
Employee Stock Purchase Plan,
Employee Retirement Plan,
Flexible working hours (usually day start between 7-10),
Home office up to 20% (to be agreed with the team),
A strong collaborative culture,
Comfortable work conditions (high-class offices, parking space),
Volleyball field and grill place next to the office,
Access to wellness facilities and integration events,
Training and broad development opportunities.