Responsibilities:

• Perform penetration testing on various systems, networks, web applications, mobile applications, APIs, and infrastructure to identify vulnerabilities and security flaws.
• Conduct vulnerability assessments and analyze the results to provide actionable recommendations for mitigation.
• Collaborate with cross-functional teams to ensure security best practices are implemented throughout the development lifecycle.
• Perform network penetration testing to identify weaknesses and recommend remediation measures.
• Conduct web application penetration testing, including both manual and automated testing techniques.
• Assess mobile applications for security vulnerabilities and recommend appropriate remediation actions.
• Perform API penetration testing to identify security weaknesses and potential risks.
• Conduct red team exercises to simulate real-world attacks and assess the organization's overall security posture.
• Generate detailed reports outlining findings, risks, and recommended remediation strategies.
• Stay updated with the latest security vulnerabilities, threats, and industry best practices.
• Assist in developing and improving penetration testing methodologies, tools, and procedures.
• Provide technical guidance and mentorship to junior members of the team, as needed.

Qualifications and Skills:

• Bachelor's degree in Computer Science or equivalent, Information Security, or a related field.
• 2-5 years of professional experience in penetration testing or related roles.
• Strong knowledge of penetration testing methodologies, tools, and frameworks.
• Proficiency in conducting network penetration testing, web application penetration testing, mobile application penetration testing, API penetration testing, and red team exercises.
• Familiarity with industry standards and frameworks such as OWASP, OSSTMM, PTES, and NIST.
• Experience with penetration testing tools such as Burp Suite, Metasploit, Nmap, Wireshark, and various scripting languages.
• Understanding of common web technologies, mobile platforms, APIs, and their associated security vulnerabilities.
• Knowledge of network protocols, architecture, and security principles.
• Strong analytical and problem-solving skills with the ability to think creatively.
• Excellent written and verbal communication skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
• Certifications such as OSCP, OSCE, CEH, or equivalent are a plus.

Join our team and contribute to the enhancement of our organization's overall security posture. Apply now and help protect our valuable assets from potential security threats and breaches.

Source: Merojob

Job Detail Expired

Contact Detail