Penetration Tester



What are we looking for?

This role will include conducting and leading penetration testing engagements, scoping discussions, report delivery. It will be this person’s role to drive the development of security testing and aid in the introduction of new technologies and ideas.The role requires a self-starter who takes a proactive approach to research and development, while keeping abreast of the current cyber landscape.


What will you do?

  • Perform network, Web, and mobile application penetration testing
  • Document and build comprehensive reports based on test findings
  • Stay up to date on current tools, technologies, and vulnerabilities
  • Effectively communicate findings and recommendations to client stakeholders
  • Execute social engineering campaigns.
  • Review and analyze security reports.
  • Keep up to date with security vulnerabilities.
  • Review test results or interpret evidence for vulnerabilities, gaps, and control deficiencies and work with business stakeholders to establish plans for sustainable resolution.
  • Enhance and update Vumetric testing methodologies, processes, and standards documentation

Requirements

  • Associates or Bachelor’s degree in Computer Science, Network & Security, a related discipline, or equivalent experience
  • Cybersecurity certificates (OSCP/OSWE,OSCE,GXPN - one compulsary)
  • 2+ years of similar Experience in Penetration Testing
  • Knowledge of common application-level vulnerabilities including those found in the OWASP Top 10 and CWE Top 25.
  • Hands-on expertise with commercial and open-source penetration testing tools (ex: Burp Suite, OWASP ZAP, Nessus, Nmap, Metasploit, CANVAS, SQLMap, Empire, etc.).
  • Understanding of Linux/Windows-based operating systems
  • Knowledge of common penetration testing methodology and standards (PTES, OWASP, CREST, OSSTMM, CWE, CAPEC, CVE, CVSS, etc.)


Send your CV to info@xpentest.com