Job Description

WithSecure\xe2\x84\xa2 protects businesses all over the world from modern threats. We do this through a Co-security approach born from first-hand knowledge that no one can solve every cyber security problem alone. Every single day, our diverse, growing team fights against online extortion, threats to national infrastructure, the unlawful spread of sensitive information, and everything in-between. The best part about working for WithSecure is our people! We are a community of dedicated and passionate professionals that take workplace happiness seriously. If you\xe2\x80\x99re looking for something that\xe2\x80\x99s more than just a job \xe2\x80\x93 we\xe2\x80\x99d love to hear from you.WithSecure Consulting delivers research-led cyber security to defend organizations, society and people from real-world attacks and build resilience into their approach. Our people are a mix of technical and creative experts \xe2\x80\x93 diverse, talented, and passionate people \xe2\x80\x93 working tirelessly to help us advance the industry with new ways of thinking. They lead their own development, in and out of the office. They call the shots when it comes to building a place to call home in our organization.We currently have an opening for a Security Consultant within our Singapore office! Your role will involve carrying out penetration testing and security assessments of typical and unique pieces of technology to sophisticated and progressive cloud-native systems.We\xe2\x80\x99d also love you to do some research to ensure your skills remain relevant in a fast paced world of security.How you spend the rest of the time that\xe2\x80\x99s not working with clients is your call. WithSecure has a commitment to research. Based on their skillset and inclination, our consultants get a percentage of their time dedicated to security research. Whether it is used to investigate new software, hardware or protocols, we encourage our team to push the boundaries of what is possible!What we need:We solve complex cyber-security problems on a daily basis and to do that requires an interesting mix of skills. To be successful at WithSecure and help our clients with their challenges we know you\xe2\x80\x99ll need the following:A passion for security! You love computers, you love security and you love hacking things and solving problems. If this wasn\xe2\x80\x99t your job it would be your hobby. Technical excellence. You know your subject area, but you\xe2\x80\x99ll also know what that subject area is without us needing to say.Self-motivation You\xe2\x80\x99re not going to be told what to do all the time. You are capable of figuring out what spending time working is of benefit to WithSecure and our clients and then run with it. With great freedom comes great responsibility and you also seek out guidance from those around you when you need it.Communication skills - How can we add value to our clients organizations unless we can tell them what we did, how we did it, and how they can fix it? But communication also extends to sharing your knowledge with your colleagues and the wider industry. Our consultants work as a team and all members are expected to suggest and implement improvements to procedures and products based on their experience and interaction with clients. They are also encouraged to share their knowledge with the WithSecure team as part of the company\xe2\x80\x99s information sharing culture.What are we looking for?

• An ideal candidate will have; 2-3+ years of experience delivering hands-on cyber security consultancy projects with clients;
• WebApp Testing. You know your way around Burp, and can perform SQLi without using SQLmap.
• Infrastructure Testing. You understand that this doesn\xe2\x80\x99t just mean running Nessus.
• Mobile App Testing. You are familiar with Frida and know how to tweak existing or write new Frida scripts.
• Experience in supporting the end-to-end delivery of large consultancy projects, with a team.
• Support pre-sales/scoping \xe2\x80\x93 a strong ability to understand and quantify client requirements, and propose consultative approaches that will deliver the best possible outcomes for the client.
• Familiarity with regional regulatory requirements for cyber security \xe2\x80\x93 including MAS\xe2\x80\x99s TRM expectations \xe2\x80\x93 and how they apply to our roles.
• Experience interfacing with non-technical, and technical stakeholders to deliver technical and non-technical information.
• Excellent verbal and written communication skills.
• Relevant practical certifications \xe2\x80\x93 valid and active OSCP and CREST (CRT)
• Additional advanced certifications pertaining to Cybersecurity would be a bonus (e.g.: OSWE, OSEP, CRTO, AWS Security Speciality, Microsoft AZ-500)

What will you get from us

• Freedom \xe2\x80\x93 you will have the opportunity to define new ways of working how we engage with our customers, and how product value gets represented.
• You will work together with experienced and enthusiastic colleagues, and within WithSecure you\'ll find some of the best minds in the cyber security industry.
• A collaborative and supportive work environment with opportunities for career growth and advancement.
• Opportunities for continuous learning and development, including training, certification and research time.

Purpose \xe2\x80\x93 Why we exist
We are here to build and sustain trust in a digital society
We are here to build and sustain trust in a digital society \xe2\x80\x94 trust that is threatened by uncertainty, fear and worry caused by cyber attacks and crime.Vision \xe2\x80\x93 Where we are heading
No one should experience a serious loss because of a cyber attack
We envision a future where no one should experience a serious loss or be put out of business because of cyber attack or crime. At least no one who puts their trust in us.Mission \xe2\x80\x93 What we do
Accelerate transition to outcome-based security
Our mission is to research, innovate and build technologies, human expertise and delivery-business models that will accelerate our customers\xe2\x80\x99 and partners\xe2\x80\x99 transition to outcome-based security.Diversity & Inclusion:WithSecure is an equal opportunity employer and believe that employing a diverse workforce is central to our success. We are committed to ensuring all qualified applicants will receive consideration for employment without regard to nationality, colour, race, ethnic or national origin, sex, gender (including gender reassignment), sexual orientation, religion or belief, age, marital status or physical or mental disability.
We will do everything we can to support you during your application. If you need us to make any adjustments to our recruitment process, speak to our recruitment team who will be happy to support you!

WithSecure