发布 昨天 101 查看 Report Job
Main Responsibilities
- Conducting vulnerability assessments and penetration testing to identify security weaknesses across infrastructure and applications.
- Perform offensive security activities, including red teaming exercises, to simulate real-world cyber-attacks and evaluate the effectiveness of defensive measures.
- Knowledge of current attack methods, manual penetration testing techniques, tools (e.g., Nessus, Nmap, Metasploit, Kali Linux, Sonar, Burp Suite etc.).
- Staying current with new attack vectors and tools, and incorporating them into testing procedures
- Work closely with the cross-domain teams to resolve security issues and suggest appropriate fixes.
- Documenting and reporting findings, including recommendations for remediation and liaising with internal stakeholders for closure.
- In-depth knowledge of OWASP Top 10 and OWASP API Top 10 security concepts, along with common application security risks.
- Perform in-depth manual and automated static secure code analysis with open-source and commercial tools.
- Automate common testing techniques to improve efficiency and write technical and executive reports.
- Any other related duty assigned by the Line Manager/HOD Information Security.
Qualification, Experience and Skills:
- 0-3 years of experience in cybersecurity specific to vulnerability assessment & penetration testing.
- Bachelor’s degree in engineering/ information security/ cybersecurity/ computer science-related field required.
- Knowledge and understanding of common information security management frameworks, such as ISO/IEC 27001, NIST, OWASP, and other standards & practices.
- In-depth knowledge of application security principles, including common vulnerabilities such as OWASP Top 10, and ASVS.
- Experience conducting vulnerability assessments and penetration tests using industry-standard tools and methodologies, such as Sonar, Burp Suite, Metasploit, Nmap, and Nessus.
- Strong understanding of cryptographic principles and encryption algorithms, as well as secure communication protocols such as HTTPS.
- Ability to interpret and analyze application source code, configuration files, and network traffic logs to identify security issues and recommend remediation strategies.
- Excellent communication and interpersonal skills, with the ability to effectively communicate technical concepts to both technical and non-technical stakeholders.
- Strong analytical and problem-solving skills.
- Ability to work effectively in a fast-paced, project-oriented environment.
Pakistan Single Window
Pakistan Single Window (PSW) is an ICT-based system in Pakistan providing a single window for trade. PSW is a facility that allows parties involved in trade and transport to lodge standardized information and documents at a single-entry point to fulfill all import, export, and transit-related regulatory requirements. If information is electronic, then individual data elements need to be submitted only once. PSW will connect relevant government departments with each other and with economic operators like importers, exporters, customs agents, shipping agents, transporters etc, in Pakistan for efficient management of cross border trade. It will provide the ease and transparency in achieving compliance with relevant regulatory requirements, through an on-line facility, that will intelligently handle the information for each transaction without the need to provide same information more than once or to physically visit such government departments. Pakistan has committed to implement various provisions of World Trade Organization’s (WTO) Trade Facilitation Agreement that includes implementation of a National Single Window (NSW) system before February, 2022. Pakistan also needs PSW implementation to overhaul management of its external trade for reducing time, cost and complexity involved to improve its position in various global rankings on competitiveness and ease of doing business. Guiding vision and mission objectives: VISION: Pakistan will establish a world-class automated hub by 2022, offering services and creating efficiencies, to reduce cross border trade related costs, time and complications for improved trade facilitation and compliance. MISSION: Improve cross-border trader processing by providing centralized ICT based services, simplified processes, effective and reliable automation, harmonized data exchange and risk-based selectivity in enforcement of government’s regulations.
Ali Aziz
CEO
Shopistan
Zubair Anjum
Business Excellence Specialist
Nestle Pakistan
Babar Ahmed Khan
Territory Sales Manager
Engro Foods
Muzammil Baig
Digital Marketing Manager
IT Services Group
Mona Sharif
Senior Team Lead
Konext PVT. LTD
Usman Habib
Recruitment & Training Executive
ACS Synergy (Pvt) Ltd.
Aqib Irshad
Head of HR, Training & OD
FINCA
Zohaib Ali
Marketing Manager
Digital Online Devices
Ayesha Shaukat
Social Media Marketing Manager
Ivoke
Sehrish Azhar
Motivational Speaker & Blogger
Living Upbeat
