Penetration Tester

penetration test (นักเจาะระบบ)

Cyber Security Rad team

Job and Responsibility

Perform penetration testing on applications (web, mobile, APIs), infrastructure (operating systems, middleware, network) and Cloud to identify security vulnerabilities

Provide and analysis on the penetration testing report into developer(related) and recommendations to them into risk mitigation from vulnerability

Provide information and recommendations to stakeholders in charge of security remediation actions and remediation validation testing.

Work and collaborate with external penetration tester and cyber security product of vendor to develop skill into cyber security of company

Continuously improve and develop the penetration testing technique to be ensure the company's systems are safe from cybersecurity threats.

Report security issues, threats that may have impacts on the system and clarify with stakeholders

Perform vulnerability assessment, testing and practices on personnel, processes, and applications.

Qualification

0 5 years' experience as a penetration tester in an IT organization

Bachelor degree or higher in Computer Science or IT related fields

Good Command of spoken and written English

Knowledge of Agile Development processes and OWASP Testing Methodology

Good programing ability, ideally with Python, C, Shell script, or Related.

Good ability and Knowledge Network OSI, TCP/UDP, SSL, Certificated Key, Network Security (Firewall/IPS/DNS), SIEM, UEBA Windows Operating System, Client Security (Anti-virus/Patch Management/Advanced malware protection), Web security and Email Security

Certifications about penetration testing domain will be advantaged (Security+, PenTest+, CEH, OSCP, etc.)