Job
Description
Position Summary: This position will be in charge of the planning and execution of the internal and external penetration and security tests, including vulnerability scanning and remediation, with high quality and on time. Will own the communication with internal and external stakeholders on all levels - from technical to strategic and authorities, on the penetration testing subject. This position will also liaise with the Director of the team and facilitate the distribution of tasks to the locally based team, ensure the compliance with local requirements and regulation and provide support to team members. Will own the local employee engagement initiatives, propose and conduct events and training, facilitate the local implementation of global team policies and tasks. Will be advisor on the specifics of the business operations in the region. Will establish close relationship with IT and non-IT stakeholders, including participation in meetings, forums and reports. Specific Responsibilities: Conduct Vulnerability Assessments of Network and Security , Server ,Endpoint Devices using various open source and commercial tools Map out a network, discover ports and services running on the different exposed network and security devices Conduct penetration test and launch exploits using Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets Research and maintain proficiency in computer network exploitation, tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding, network security, and encryption. Analyze scan reports and suggest remediation / mitigation plan Keep track of new vulnerabilities on various network and security devices for different vendors Review software posture and work with operations to plan code version upgrade requirements of supported security and network devices Review, conduct, or participate in audits of cyber programs and projects. Advanced technical analysis on intrusions Audit configuration of Network and Security devices Providing rich client specific reports Required Certification: Certifications in systems management, systems administration, system certification, or risk analysis may substitute for a bachelor's degree. PNPT, eWPTx, CRTO, CRTP Work Experience: 5-8 years in field of IT Security Services. Leading regional projects, contributing to global ones. Responsible for the evaluation and outcome of assigned task. Technical skills: Expert knowledge in at least two of - Security Architecture - Client relationship - Security Engineering - Application Security - Governance - Vulnerability and Patch management
