استخدام Penetration Tester
شرح موقعیت شغلی
- Performing vulnerability and security assessments and penetration testing and propose remediation approaches
- Discovery of Problems/Identifying Vulnerabilities
- Performing manual Penetration test (Black-box\Grey-box) on Operating system and Network infrastructure
- communicate and report vulnerability and security assessments to the upper management
- Provide security guidance and drive decisions in collaboration with other technical and management team, ensuring Security principles are being upheld and no violations of Security Policy is taking place
- Work independently with network and system administrators and other colleagues to ensure secure infrastructure and implementation of our networks
- Identifying current and emerging technology issues including security trends, vulnerabilities, and threats
- Hardening Network and Operating system (MS Windows and Linux)
- Configuring and installing security infrastructure devices
- Working hours: Saturday to Wednesday at 8:00 to 16:00.
- Discovery of Problems/Identifying Vulnerabilities
- Performing manual Penetration test (Black-box\Grey-box) on Operating system and Network infrastructure
- communicate and report vulnerability and security assessments to the upper management
- Provide security guidance and drive decisions in collaboration with other technical and management team, ensuring Security principles are being upheld and no violations of Security Policy is taking place
- Work independently with network and system administrators and other colleagues to ensure secure infrastructure and implementation of our networks
- Identifying current and emerging technology issues including security trends, vulnerabilities, and threats
- Hardening Network and Operating system (MS Windows and Linux)
- Configuring and installing security infrastructure devices
- Working hours: Saturday to Wednesday at 8:00 to 16:00.
Requirements
- Nature and length of previous experience: Penetration Testing with 1+ years’ Work Experience, also Network Engineer or Web developer background is a plus
- University Qualifications: BSc or MSc in computer engineering or Information Technology
- Information security related certifications like Certified Ethical Hacker (CEH), SANS SEC 504 and 560 are plus.
- Nature and length of previous experience: Penetration Testing with 1+ years’ Work Experience, also Network Engineer or Web developer background is a plus
- University Qualifications: BSc or MSc in computer engineering or Information Technology
- Information security related certifications like Certified Ethical Hacker (CEH), SANS SEC 504 and 560 are plus.
Specialist knowledge:
- understanding of information security concepts, standards and practices
- Strong understanding of network concepts including but not limited to TCP/IP protocol, subnetting, routing, access control lists, firewalls, VPN, NAT
- Familiar with packet analysis include: SMTP Traffic & Status codes, FTP Traffic & Status Codes
- Familiar with penetration testing enterprise networks using standard penetration tools (Metasploit, Nmap, Nessus, Cobalt Strike, etc.)
- Basic understanding of scripting language
- Familiar with Network attacks
- Understanding of threat attacks, exploitation and data exfiltration
- Familiar with security network devices (firewall, WAF, IDS, etc.)
- Familiar with network/operating system vulnerabilities and security issues
- understanding of information security concepts, standards and practices
- Strong understanding of network concepts including but not limited to TCP/IP protocol, subnetting, routing, access control lists, firewalls, VPN, NAT
- Familiar with packet analysis include: SMTP Traffic & Status codes, FTP Traffic & Status Codes
- Familiar with penetration testing enterprise networks using standard penetration tools (Metasploit, Nmap, Nessus, Cobalt Strike, etc.)
- Basic understanding of scripting language
- Familiar with Network attacks
- Understanding of threat attacks, exploitation and data exfiltration
- Familiar with security network devices (firewall, WAF, IDS, etc.)
- Familiar with network/operating system vulnerabilities and security issues
Soft Skills and Personality traits:
- Excellent written and verbal communication skills
- Ability to clearly communicate and present technical topics
- High skill in solving problems and providing optimal solutions
- Strong organizational skill and be able to attend to and prioritize projects
- Excellent analytical and time management skills
- Proven ability to thrive and respond to frequent demands of multiple constituents, both internal and external, in a high demand environment
- Ability to work under pressure and stressful scenarios
- Self-study capability and morality
- Teamwork skills
- Discipline and professional ethics
- Excellent written and verbal communication skills
- Ability to clearly communicate and present technical topics
- High skill in solving problems and providing optimal solutions
- Strong organizational skill and be able to attend to and prioritize projects
- Excellent analytical and time management skills
- Proven ability to thrive and respond to frequent demands of multiple constituents, both internal and external, in a high demand environment
- Ability to work under pressure and stressful scenarios
- Self-study capability and morality
- Teamwork skills
- Discipline and professional ethics
مهارتهای مورد نیاز
- Linux
- تست نفوذ
- tcp/ip
- Firewall
- CEH
- امنیت اطلاعات
- امنیت
حداقل سابقه کار
- کمتر از سه سال
جنسیت
- مهم نیست
وضعیت نظام وظیفه
- معافیت دائم پایان خدمت