Senior Penetration Tester, Bryanston

Our Client a Global Tech firm is seeking a Senior Penetration Engineer to join their team in Sandton. They offer stability, growth, attractive salary along with excellent benefits and a great working environment.

As a Senior Penetration Tester, you'll be responsible for identifying and fixing vulnerabilities in our products. You'll perform research to identify potential weaknesses, develop test cases and tools that can help us find the most important issues. You will also be responsible for performing manual testing of web applications using various automated tools as well as manual testing of mobile apps on various platforms.

Job Description Summary

Performs penetration testing and attack simulations on business critical infrastructure including internal servers, networks and applications to identify and resolve security flaws. Probes for security weaknesses in applications, networks and systems. Experiments with various methods attackers could use to exploit information security vulnerabilities. Completes threat assessment reports that outline penetration test findings and presents findings to management. May conduct physical security assessments of servers, systems and network devices. Collaborates with cybersecurity team to maintain the company's information security policies and procedures

Key Roles and Responsibilities:

1. Perform penetration tests against internal and external facing systems.
2. Provide input to improve the quality and effectiveness of tests in a highly scaled and global environment.
3. Articulate complex technical risks through creation of reports and delivering presentations to key stakeholders.
4. Work with Security DevOps teams to test the orchestration and automation processes and platforms, feed results into a testing program.
5. Support the assessment risk and the development and/or recommends appropriate mitigation countermeasures based on empirical testing.
6. Provide comprehensive technical expertise with web, application and database vulnerability testing
7. Support the development of the security automation framework and the implementation roadmap.

Knowledge, Skills and Attributes:

1. Ability to work unsupervised in a remote capacity and deliver results
2. Demonstrate a strong ability to engage with various stakeholders, have a team based approach and work towards share goals and outcomes.
3. Ability to think outside the box and a passion to improve your skills and drive innovation
4. Ability to compromise systems and demonstrate ways to laterally move post compromise
5. Academic Qualifications and Certifications:
6. Information Technology degree
7. Security related certifications such as OSCP, OSCE or CREST are desirable

Required Experience:

1. Extensive penetration testing experience in a similar role.
2. Experience with both commercial and open source security tools and scripting languages
3. Exposure to security testing scenarios e.g. Capture the Flag / Red Team / Blue Team is desirable
4. Experience with various testing platforms e.g. Hack the Box / Vulnhub / PentesterLab is desirable