x
Get our mobile app
Fast & easy access to Jobstore
Use App
Congratulations!
You just received a job recommendation!
check it out now
Browse Jobs
Companies
Campus Hiring
Download App
Jobs in Singapore   »   Jobs in Singapore   »   Quality Assurance / Control Job   »   24789020 AVP - Senior Penetration Tester
 banner picture 1  banner picture 2  banner picture 3

24789020 AVP - Senior Penetration Tester

Citibank N.a.

Whether you’re at the start of your career or looking to discover your next adventure, your story begins here. At Citi, you’ll have the opportunity to expand your skills and make a difference at one of the world’s most global banks. We’re fully committed to supporting your growth and development from the start with extensive on-the-job training and exposure to senior leaders, as well as more traditional learning. You’ll also have the chance to give back and make a positive impact where we live and work through volunteerism.

Shape your Career with Citi

Citibank serves as a trusted advisor to our retail, mortgage, small business and wealth management clients at every stage of their financial journey. Through Citi's Access Account, Basic Banking, Citi Priority, Citigold and Citigold Private Client, we offer an array of products, services and digital capabilities to clients across the full spectrum of consumer banking needs worldwide.

We’re currently looking for a high caliber professional to join our team as AVP : Senior Penetration Tester based in Singapore. Being part of our team means that we’ll provide you with the resources to meet your unique needs, empower you to make healthy decision and manage your financial well-being to help plan for your future. For instance:

About the job

If you are passionate and curious about security, and want to use your offensive security skills to help keep our firm’s application and infrastructure safe, we want to speak with you.

Who You Are

You are talented in solving problems and identifying security weaknesses, and you have experience collaborating with engineers who remediate the vulnerabilities you identified. You adapt well to changes, and speak up to ask questions to clarify when things don’t look right.

As someone with an offensive security mindset, you work closely with others to listen to ideas and share suggestions to collectively devise the best approach to remediate vulnerabilities,

continuously learn and enhance skillsets, techniques and methods.

You should have a bachelor’s degree with minimally 5 years of relevant experience. Have a good understanding of industry frameworks and methodologies such as OWASP, OSSTMM, PTES, MITRE ATT&CK, threat modeling, etc. Be certified, or intend to be certified, in accredited security certifications such as OSCP, OSWE, GXPN, GCPN, CISSP, etc.

What You’ll Do

As an individual contributor on our penetration testing team, you are responsible for:

  • Preparing and executing penetration testing assignments on our infrastructure assets and applications
  • Working closely with the engineering teams to provide expert guidance and advice on remediation of identified vulnerabilities
  • Verifying newly discovered vulnerabilities in the environment
  • Reporting security vulnerabilities to businesses, clearly articulating security issues to technical and non-technical stakeholders
  • Guide and support other team members using your strong technical knowledge
  • Identify inefficiencies in the team’s workflow, suggest solutions and drive outcomes
  • This role focuses strongly on your ability to perform manual penetration testing on infrastructure related systems and devices. To be a good fit for this role, you should be able to identify security weaknesses and vulnerabilities in various platforms, and efficiently deliver security assessment assignments.

What You’ll Bring

Identify vulnerabilities and zero-day exploits though various means of analysis using:

  • Vulnerability assessment tools such as Nessus, Qualys, Kali Linux, AppScan, Burp Suite, etc.
  • Familiar with scripting languages such as Python
  • Good knowledge of:
  1. TCP/IP, IDS/IPS, firewalls, AAA systems, SSH, PKI
  2. OS Security - Unix, Linux, Windows, Android/IOS
  3. Common protocols - LDAP, SMTP, DNS, routing etc.
  4. Web application infrastructure - application servers, web servers, databases, cloud services, containers technologies etc.

Provide guidance to other team members and share knowledge and findings with them


How You’ll Succeed

Be conscientious and consistent in identifying security vulnerabilities and working with the respective engineering teams and stakeholders to provide sound guidance and remediations. Be a team player, and a keen learner.

Working at Citi is far more than just a job. A career with us means joining a family of more than 230,000 dedicated people from around the globe. At Citi, you’ll have the opportunity to grow your career, give back to your community and make a real impact.

Take the next step in your career, apply for this role at Citi today

https://jobs.citi.com/dei

Sharing is Caring

Know others who would be interested in this job?

Similar Jobs
Test Solutions Engineer
Micron Semiconductor Asia Operations Pte. Ltd.
Quick Apply
Test Solutions Engineer
Micron Semiconductor Asia Operations Pte. Ltd.
Quick Apply
QC Engineer (Electronics Manufacturing)
Hkm Hr Management Pte. Ltd.
Quick Apply
Regional Quality Assurance Manager, Asia (Consumer Care)
Triton Ai Pte. Ltd.
Quick Apply
Test Analyst
Toss-ex Pte. Ltd.
Quick Apply
Automation Test Engineer (1 year contract)
Persolkelly Singapore Pte. Ltd.
Quick Apply
Control System Engineer | PLC Engineer (Automation)
Ea Recruitment Pte. Ltd.
Quick Apply
Analyst/AVP, Quality Assurance (Legal & Compliance)
Sumitomo Mitsui Banking Corporation Singapore Branch
Quick Apply
Assistant Test Technician/Engineer (Semicon/Mfg)
Talent Trader Group Pte. Ltd.
Quick Apply
Regional Compliance Specialist - #HHW
Recruit Express Pte Ltd
Quick Apply