Responsibilities:
- Perform network penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments
- Develop scripts, tools, or methodologies to enhance red teaming processes
- Assist developers and other tech members in the finding remediations
- Review solution design, recommend security measures and controls that will keep Virgo Tech environments secure.
- Create daily and monthly reports,
- Support compliance team to monitor standards and control
- Work with distributed teams to achieve security goals
- Maintain security controls and advocate for best practices
Requirements:
- Minimum 2 years experience in experience as a Pen-Tester - focused on Offensive Security / Red Team activities
- Hands-on experience with web application penetration testing and infrastructure penetration testing.
- Practical knowledge of the OWASP Testing Guide, e.g. XSS, CSRF, Session Hijacking.
- Experienced in scripting languages, e.g. Java, Python, Golang.
- Experienced working with SQL languages (such as PostgreSQL, MySQL, etc),
- Basic understanding of CI/CD pipelines.
- It will be an advantage if you have professional offensive security certifications including OSCP/ OSWE/ CREST Registered Penetration Tester/ GCIH/ GMON/ CSSLP.