Conducting various security assessments, including penetration testing, source code review, and security configuration review.
Assessing the security of assets such as web and mobile applications, network infrastructure, and Internet of Things devices.
Managing work to ensure high-quality and timely completion.
Analyzing threats and vulnerabilities to determine impacts and risks for clients.
Providing professional recommendations and action plans to clients.
Delivering excellent client service and being responsible for the delivery of that service.
Communicating security findings clearly and effectively to internal and external stakeholders through both written and verbal means.
Requires travel to perform on-site security assessments when needed.
A diploma or bachelor’s degree in computer science, computer engineering, or a related field is beneficial. Industry-recognized technical certifications, such as Offensive Security or CREST certifications (e.g. OSCP, CREST CRT) is preferred. Expertise in software and network security. Proficiency in finding and identifying vulnerabilities in web applications. Experience with penetration testing without relying on automated tools.
Basic programming skills to support the development of proof-of-concepts.
Creativity, independence, and strong problem-solving skills.
Excellent verbal and written communication skills, including the ability to prepare clear and concise documentation and presentations of information for technical and non-technical audiences.
2 or more years of experience in Penetration Testing is prefered.