Specialist, Pentest

Job Responsibilities

• Operate a hands-on role involving penetration testing and vulnerability assessment activities of applications, operating systems, networks, and mobile applications on regularly basis to identify vulnerability across several systems.
• Analyze security policies configuration and provide recommendation based on industry best practices.
• Produce actionable, threat-based, reports on security testing results and present the finding to head of department and management ongoing basis.
• Conduct physical assessments of servers, systems, and network device security.
• Coordinate and lead on external and internal penetration testing projects and provide promptly update to management.
• Consult with application developers, systems administrators, and management to demonstrate security testing results, explain the threat presented by the results, and consult on remediation.
• Promote information governance and security at all levels of management and employees, maintaining and developing a positive culture of compliance against industry standards and regulations.
• Identify and address a full range of issues from structure and policy, through to assisting in specific areas such as data privacy; data leakage prevention / monitoring; information rights management; third party security and cryptography.
• Develop and maintain security assessment testing plans.
• All other matters ancillary to the above and to perform any other related issues that management may require from time to time.

Job Requirements

• Bachelor’s degree or equivalent on Computer Science or Information Technology.
• Knowledge and experience in doing various penetration testing.
• Experience dealing and manage on external penetration testing projects
• Holding any certification such as Pentest+, CHFI, OSCP or other penetration certifications are preferable.
• Good in analytical skills.
• Good communication and interpersonal skill.
• Good verbal and written English skills to present to senior management.