Penetration Tester

Title: Penetration Tester

My Client has a requirement for an experienced Penetration Tester to join their project.

Job description and skills

Lead and/or be part of the Red/Blue Team.

Provide Web, infrastructure and application level penetration testing;

Provide security design reviews to ensure compliance with policies and directives;

Provide security consultancy and advice to projects, plans, and other entities;

Build and sustain effective communications with different stakeholders; specifically, the organization units supporting accreditation processes.

Inform at both executive and technical levels on security reports and testing outcome,

In co-ordination with the Head of the Penetration testing Cell, ensure proactive collaboration and coordination with internal and external stakeholders.

Skills

Knowledge and experience (more than 3 years) in the following areas:

Web application penetration testing;

IT infrastructure penetration testing;

Network security architecture design;

Assessing security vulnerabilities within OS, software, protocols & networks;

Researching and evaluating security products & technologies

Use of penetration testing tools, techniques, and recognized testing methodologies

Knowledge in system and network administration of UNIX and Windows systems;

Scripting skills in at least one of the following: Perl, Python, Ruby, Shell (bash, ksh, csh);

Technical knowledge in system and network security, authentication and security protocols, cryptography, application security, as well as, malware infection techniques and protection technologies;

Ability to evaluate risks and formulate mitigation plans;

Proven ability to write clear and structured technical reports, including executive summary, technical findings and remediation plan for several different audiences.