10:30 am - 5:30 pm

Sector-35,Faridabad, Haryana-121003

CREST certified pen Tester

Full time @enigmasoft technologies private limited Jobs & Career in IT COmputers Email Job
  • Share:

Job Detail

  • Job ID 24293
  • Career Level ManagerExecutive
  • Experience 2 Years
  • Gender MaleFemale
  • Category / Function Development
  • Qualifications Degree Bachelor

Job Description

The ideal candidate must have

  • Excellent communications skills both client-facing and working alongside peers.
  • Good understanding of network protocols
  • Solid technical skills in both information security architecture and penetration testing
  • A solid understanding of ethical hacking
  • Scripting and programming experience is beneficial
  • Ability to explain findings to a non-technical audience
  • Excellent report writing and presentation skills
  • Able to work independently but also as part of a team
  • Outstanding organizational and data analytics skills
  • Comfortable working in a fast-paced environment
  • Have a technical academic background in cyber security or software engineering
  • CREST Registered Penetration Tester (CRT) – mandatary

Industry qualifications are a bonus, for example:

  • CREST Practitioner Security Analyst (CPSA)
  • Offensive Security Certified Professional (OSCP)
  • Offensive Security Web Expert (OSWE)
  • Offensive Security Evasion Techniques and Breaching Defenses (OSEP)
  • CREST Certified Infrastructure Tester (CCT INF)
  • CREST Certified Web Application Tester (CCT APP)
  • Penetration Testing and Ethical Hacking/Purple Team SANS courses

Job Description

A successful pen tester should have a deep understanding of both information security and technology. They should understand basic concepts including computer networking, web technologies, and cloud services. They will also have knowledge of common network defense tools and techniques, and their associated weaknesses. Successful candidates should also be able to learn advanced techniques in vulnerability detection, fingerprinting, and security control evasion/bypass.

You are expected to quickly process the latest information so that you can stay ahead of the changing cyber security landscape and apply what you know. You will be expected to identify, evaluate, and understand all access vectors for each customer’s environment and automate your approach.

Your responsibilities

  • A core part of your role will be to contribute to the continuous improvement and maintenance of the security systems. This will include:
  • Writing new security issue descriptions and recommendations to ensure that they are accurate, business impact focused, actionable, and comprehensive
  • Enhancing customer scan results to chain vulnerabilities, exploit weaknesses to identify impact, and reduce false positives
  • Carry out high quality application, network, systems, and infrastructure penetration tests to a consistent standard
  • Evaluate and select from a range of penetration testing tools
  • Keeping up to date with emerging attack techniques to identify areas where we can improve our coverage
  • Documenting and automating common attack techniques in proof-of-concept tools which can be integrated into the platform

Other jobs you may like