*This role requires a security clearance. Eligible individuals will be prioritised.
The Role:
Our Red Team, Offensive Security Associate Analysts & Analysts work with organisations and technical teams to perform a variety of assessments and provide practical advice to keep them secure. Red team members are generally familiar with and apply themselves to most aspects of cybersecurity but specialize in penetration testing for web applications, mobile applications and APIs.
They help to ensure cybersecurity issues are identified along with their associated risks, and guide organisations to manage this risk in a practical manner.
This role will also be responsible for guiding junior talent to become cybersecurity experts as well.
You will be:
· Taking up the role of an Engagement Lead on projects, as an individual contributor, working with your team to complete projects;
· Conducting various security assessments for various technology types and environments, with a focus on penetration testing; and
· Coordinate with clients and other subject matter experts in different fields, as required in projects.
A suitable candidate would have some or most of the following attributes:
· 1 or more years of experience in offensive security or a technical security field.
· Preferred Certifications: OSCP and CREST CRT
· Demonstrate deep understanding of penetration-testing methodologies, techniques, and remediation.
· Understand technology systems and be able to identify and describe vulnerabilities in web apps/web APIs, network systems, and within code;
· Familiar with threats in the different environments, from cloud to endpoints or IoT systems to perform review of hardening controls for such systems; and
· Reactive and adaptable to new threats and technologies as they evolve.
Experience and Certification
· 1-3 years of experience in offensive security or a technical security field.
· Preferred Certifications: OSCP and CREST CRT, technology depth certifications
The Mission:
Protect and enable growth of value creators, through excellence and integrity.
To be the first choice for visionary organisations and talents, and to turn every client into a client for life.
We are passionate about providing opportunities to our team members to be the best version of themselves and building partnerships with our clients to ensure cybersecurity empowers them towards their business goals.
The Team:
Our team is made up of Information Security professionals coming from all types of professional and personal backgrounds - we have a unique, international environment and believe in having fun at work. We offer benefits to help you in your career progression and also provide training and certification opportunities, flexible hours, a great workplace environment, a culture focused on helping you become a well rounded consultant while working in a technically strong, diverse team.
About Privasec
Privasec is an independent cybersecurity consulting firm and we have been operating for more than 7 years. We have offices located in Singapore and Malaysia, as well as in 6 different cities in Australia.
We offer Cybersecurity services ranging from Offensive Security to Strategy, Governance, Risk and Compliance services, including ISO27001 implementation and adoption of other International Standards for our clients. We are ISO27001 certified, CREST Accredited and a PCI QSA company.
