Responsibilities:
- Responsible for the Penetration testing and Vulnerability assessment of the ICT systems (i.e. Web, Mobile, Thick Client, Network).
- Plan and create penetration testing methods, scripts, and tests.
- Develop and approving scoping activities to identify what components of a given system require penetration testing
- Define test strategy to carry out the Penetration Testing.
- Review reports and recommendations from findings, security issues and level of Risk.
- Advise on methods to fix or lower security risks to Development Team.
- Present findings, Risks, and conclusions to stakeholders.
- Automate penetration testing activities to save time and effort.
- Be a mentor and carry out training sessions to new joiners and junior resources on Penetration Testing activities.
- Involves on the Security Testing and other Tools procurement activities
- Work on the Penetration Testing Process improvement areas.
Requirements:
- Bachelor degree in Computer Science, Engineering or a related subject
- 10+ years of relevant experience including Penetration Testing on (Web Application, Mobile, Thick Client and Infrastructure applications)
- Business risk along with good reporting writing and client presentation skills. Consulting experience within a Professional Services organization.
- Strong analytical skills and ability to work independently.
- Have a strong sense of responsibility towards delivery of project objectives
- Equipped with programming skills in at least one of following programming language/environment such as SAP, ABAP, .NET, Python, Ruby, JAVA or Regular expression.
- Experience in healthcare industry will be an added advantage.
- Must have the CEH, OSCP or CREST-CRT Certifications.
- Any other Certifications like OSCE, CISSP would be advantage.
- A good team player.
- Excellent verbal and written communication skills.