We are looking for Cyber Security and Penetration Testing Specialists to join our team. We are looking for individuals with strong interests and practical experience in the field and not necessarily formal education or degrees.
You will work remotely. You must provide your own work environment: Windows machine, high speed Internet, and a quiet work area at home.
Job Responsibilities
Follow predefined penetration testing methodologies, guidelines and procedures prepared by the company to ensure complete and consistent testing.
Conduct basic networking and web app penetration tests includes performing security assessments and penetration tests on network and web apps to identify vulnerabilities and security weaknesses
Support senior penetration testers in performing vulnerability scanning and assessments using automated tools and manual techniques.
Document the findings and outcomes of testing and create reports including all identified vulnerabilities, security weakness, potential impacts, remediation solutions to fix the issues and how to measure them.
Assist with security solution recommendations: Collaborate with stakeholders (in client company) to provide and implement basic recommendations for addressing identified vulnerabilities. Work closely with other members of the security team, developers and system administrators in remediating identified vulnerabilities.
Learn and develop exploit writing skills under the guidance of senior penetration testers.
Stay updated on industry trends and emerging threats, techniques and vulnerabilities.
Skills we are looking for
Basic understanding of networking concepts, TCP/IP, DNS, HTTP and other fundamental networking protocols.
Familiarity with web technologies such as HTML, CSS, JavaScript, and common web frameworks.
Basic knowledge of operating systems.
Familiarity with penetration testing standards (OWASP and OSSTMM) and frameworks for network and web apps.
Interest in writing reports and providing security solutions for clients.
Basic understanding of vulnerability analysis.
Fluency and excellent communication skills in English are a must in order to work both with clients and team members.
Relevant certifications such as Certified Ethical Hacker (CEH), Security+ would be considered a plus, although optional.
A plus if you have experience in the following:
Simulation of threats and vulnerabilities
Mastery of automating activities with Python and Shell Scripting
Familiar with the software security life cycle
Introduction to operating system penetration testing
Familiarity with malware
Familiar with MITER ATT&CK framework
Familiarity with tools such as Burp suite, Zap, NMAP...
Ability to analyze vulnerabilities and provide solutions
Must provide own work environment:
Windows machine, high speed Internet, and a quiet work area at home.