Job Description

*5 mins walk from Raffles/Telok Ayer Mrt* *Bonus included*

& Requirements : We are looking for a highly driven and self-motivated Cyber Security Consultant to join our team! As a member at our company, you will have the opportunity to work on new and exciting projects and develop your career.

JOB SUMMARY You will participate in a variety of engagements, focusing on targets that may include network equipment, servers, applications, APIs, wireless infrastructures, mobile devices, and other information systems. Using a variety of tools and techniques that may include red teaming, you will have the opportunity to combine technical expertise with your imagination to discover innovative methods with the goal of ensuring customers remain one step ahead of its adversaries.

Hands on Responsibilities:

• Support the sales by attending security sales meeting (if necessary), effort estimation and provide security testing project timeline

• Develop the security acceptance test plan

• Provide expert technical support during the security testing activities

• Security test preparation, setting-up of testing environment, configuration and installation of the security testing tools

• Perform manual or automated security testing using commercial security testing tools

• Conduct Greybox Testing (Authenticated) and/or Blackbox Testing (Unauthenticated) Penetration Tests

• Conduct Whitebox Testing and Secure Code Review

• Conduct Network and Infrastructure Vulnerability Assessment and Penetration Testing

• Conduct Web , Mobile and Desktop Application Vulnerability Assessment and Penetration Testing

• Find and pinpoint the vulnerabilities of the assess target system / application

• Document and Report the vulnerabilities found in the system

• Provide professional recommendations / advice to mitigate and resolve the vulnerabilities

• Present the security testing results to the relevant stakeholders

• Provide weekly status reporting on the security testing activity progress
  

Requirements:

• Bachelor\'s degree, preferably in computer science or information systems, or equivalent work experience

• Minimum 3 - 5 years security experience in a security analyst, engineer, architect, consultant, or a similar role

• Minimum 3 years\xe2\x80\x99 professional experience in conducting vulnerability assessment and penetration testing
  

• Required Certifications: Any of the followings

• CREST Registered Penetration Tester (CREST CRT)

• Offensive Security Certified Professional (OSCP)
  

• Knowledge in conducting security testing with the following guidelines and standards

o Open Web Application Security Project (OWASP Top 10 Frameworks) o Common Vulnerability Scoring System (CVSS) o Common Vulnerabilities and Exposures (CVE) o Common Weakness Enumeration (CWE) / SANS Top 25 Software Errors

• High proficiency in manual and automated techniques for penetration testing (network equipment, servers, web applications, APIs, wireless, mobile, databases, and other information systems), as well as executing vulnerability assessments (injection, privilege escalation, fuzzing, buffer overflows, etc.)

• Tools \xe2\x80\x93 Proxies, Port Scanners, Vulnerability Scanners, Exploit Frameworks (ex: Burp, Nessus, Nmap, Metasploit)

• Strong oral and written communication skills, including a demonstrated ability to prepare quality documentation and presentations for technical and non-technical audiences
  

HOW TO APPLY: We would like to invite interested applicants to email detailed resume in MS Word format to: kailun@dhc.com.sg

We regret to inform that only shortlisted candidates will be notified. All applications will be treated with the strictest confidence. By submitting any application or r\xc3\xa9sum\xc3\xa9 to us, you will be deemed to have agreed and consented to us disclosing your personal information to prospective employers for their consideration.

Under the revised Employment Agencies Licence Condition 5(b), employment agencies (EAs) are required to collect the personal data (e.g., NRIC, FIN) of applicants referred to employers for permanent or contract job positions of at least 6 months with a fixed monthly salary of $3,300 and above. PDPA requirements on collection, use and disclosure of personal data are not applicable to EAs that are collecting such information, as it is a regulatory requirement.

https://www.mom.gov.sg/faq/submit-quarterly-referral-and-placement/are-employment-agencies-allowed-to-collect-personal-data

Ng Kai Lun Registration number R22105927 | EA License: 12C6253 DYNAMIC HUMAN CAPITAL PTE. LTD. | 2 Kallang Avenue #03-08 CT Hub Singapore 339407