Job Description

We're looking for security-conscious engineersJoin our security team and help secure our organization through maintaining, engineering, and deploying security solutions. We use industry-standard security tools, in an automated fashion, to ensure our security teams can operate effectively and provide security to the company.Responsibilities: As an individual contributor on our Cybersecurity engineering team, you will have a broad set of responsibilities including (the mix will depend on your interests and skill level): Keep abreast of new developments, emerging threats and vulnerabilities in cybersecurity practices and technologies. Conduct Vulnerability Assessments, Penetration Testing, Device Hardening, Application Security Assessments, Log Review, Review of Documents, Network Monitoring and Reporting Conduct and compile findings on new vulnerabilities, new tools for departmental use. Create project deliverables / reports and assist the client with remediations and discussions. Planning, implementing, managing, monitoring, and upgrading security measures for the protection of the organization's data, systems, and networks. Troubleshooting security and network problems. Responding to all system and/or network security breaches. Abide by the project timelines and maintain project discipline. To conduct one (or more) of the following in customer environment: To conduct vulnerability assessment and penetration test on networks, web applications, mobile applications, or wireless systems To perform security review of host OS configuration, types of applications, networks, or platforms To perform security analysis on the vulnerabilities To prepare comprehensive reports with document findings To deliver presentations to customersRequired Skills Bachelor's Degree in Computer Science, IT, Engineering, Information Security or equivalent Possess either CREST CRT (Pen) or OSCP is a or CISSP preferred Possess one (or more) of the following Security certifications: CEH, GPEN, GWAPT, GMOB would be an added advantage Familiar with various tools Burp Suite, Kali Linux, Metasploit, Nessus, Nmap, Netsparker, Wireshark & etc. is an added advantage Possess at least 4 years of cyber security experience in security testing, & review. Ability to collaborate with team members, executive tasks effectively and independently Possess good communication and interpersonal skills Sound knowledge about infrastructure vulnerability scans, identifying security vulnerabilities, weaknesses, threats, and assessing related risks that exists within an IT Infrastructure or business processes. Sound knowledge about Application vulnerability assessments and relevant knowledge of OWASP top 10 vulnerabilities and SANS. Good understanding of firewalls, switches, and router's configuration settings and policies, relevant experience in performing rule base reviews and configuration reviews for network devices. Willing to learn and implement new Cyber security related products and solution based on the customer's needs.Preferred Experience (Optional but valued) Experience in common continuous integration tools such as GitHub Actions, Jenkins and CircleCI. Advanced experience with the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Framework Experienced DevOps or DevSecOps practitioner Advanced knowledge of security controls, audits, and configurations including SIEM (Splunk, QRadar) & EDR (Crowdstrike, Carbon Black)What we offer: Challenging work in a fun and collaborative environment Attractive compensation and time-off benefits Spacious open-concept and centrally located offices Multicultural teams represented by 5+ nationalities Reports initially to the Cybersecurity Manager, and then the Lead Cybersecurity Engineer.
Not Specified