Responsibilities
• Operate a hands-on role involving Penetration testing and Vulnerability assessment of the ICT systems (i.e. Web, Mobile, Thick Client, Network).
• Plan and create penetration testing methods, scripts, and tests.
• Carry out scoping activities to identify what components of a given system require penetration testing
• Define test requirements and criteria to carry out the Penetration Testing.
• Create reports and recommendations from findings, security issues and level of Risk.
• Advise on methods to fix or lower security risks to Development Team.
• Present findings, Risks, and conclusions to stakeholders.
• Automate penetration testing activities to save time and effort.
• Be a mentor and carry out training sessions to new joiners and junior resources on Penetration Testing activities.
• Involves on the Security Testing and other Tools procurement activities.
• Work on the Penetration Testing Process improvement areas.
Skills/Requirement
• 5+ years of relevant experience including Penetration Testing on (Web Application, Mobile, Thick Client and Infrastructure applications)
• Business risk along with good reporting writing and client presentation skills. Consulting experience within a Professional Services organization.
• Strong analytical skills and ability to work independently.
• Have a strong sense of responsibility towards delivery of project objectives
• Equipped with programming skills in at least one of following programming language/environment such as SAP, ABAP, .NET, Python, Ruby, JAVA or Regular expression.
• Experience in healthcare industry will be an added advantage.
• Must have the CEH, OSCP or CREST-CRT Certifications.
• Any other Certifications like OSCE, CISSP would be advantage.
