Job Description

Minimum 2-5 years of Penetration Testing experience required- Including conducting different types of assessments, such as network, mobile, web, thick, wireless, social engineering, physical, etc.The duties for this role are divided into three areas of responsibility, namely Penetration Testing, Red Teaming and Research and Development.Penetration Testing Duties:Work as part of a vulnerability assessment and /or penetration testing team, taking direction from line managers and executing directives in a thorough and timely fashionConduct vulnerability assessments on a wide variety of technologies and implementations utilising both automated tools and manual techniquesConduct network penetration testsConduct application penetration tests (web and thick client)Conduct wireless and mobile security assessmentsConduct social engineering assessmentsConduct physical security assessmentsEffectively communicate successes and obstacles with fellow team members and line managersInterface with client contact(s) and staff in a constructive and professional mannerDevelop subject matter expertise in topics to include: network, database, wireless and application security assessments and adversarial network operationsUtilise common vulnerability assessment and penetration testing toolsRed Teaming Duties:Working as part of a Red Team and assisting with the following duties (but not limited to):Initial reconnaissance open-source intelligence (OSINT) for collecting information on the targetsInitial compromise gaining a foothold into the target environment through targeting weaknesses in people, process and / or technology.Deploy command-and-control servers (C&C or C2) and custom payloads to establish communication / persistence in the targets network.Develop tools, techniques and procedures to evade detection by blue team (including the development of custom payloads)Escalate privileges and maintain persistenceExfiltrate and / or complete objectivesResearch and Development Duties:Research new vulnerabilities with a focus on high-profile productsUnderstand the terminology and tactics employed by threat actors- Research new attack methods

JobPlacements.com