Penetration Tester - Vulnerability Management

Roles & responsibilities :

- Perform manual penetration testing against web applications, APIs (REST/SOAP) and network devices.

- Ability to demonstrate application testing experience in real time via demos to both internal and external audiences.

- Knowledge and experience of OWASP guidelines and methodologies.

- Ability to independently provide technical updates to stakeholders and mentor team members.

- Engage with technical and non-technical audiences to articulate both testing processes, techniques and results; guide technical audiences on remediation options and assist clients in weighing those options.

- Partner with the Cyber teams to develop new testing techniques, automation for testing and marketing collateral to support the practice and support junior team members on tools and techniques in performing pentests.

- Excellent technical report writing skills and ability to communicate reporting results with technical and non-technical audiences and lead remediation conversations.

Mandatory technical & functional skills :

- Vulnerability assessment and web application, API, network pentesting.

Preferred technical & functional skills :

- Knowledge of mobile application pentesting, application security, vulnerability management, configuration reviews, security operations and monitoring or security architecture design would be an added advantage.

Key behavioral attributes/requirements :

- Excellent written and verbal communication skills.

- Ability to think outside of the box and provide actionable solutions to challenges.

- Team player; self-driven and ability to work independently.

Educational qualifications :

- Bachelor's degree from an accredited college/university or equivalent industry experience

- One or more relevant certifications, preferred : CEH, OSCP, GWAPT, CREST, OSWE, OSWA.