الوصف الوظيفي
Capgemini Riyadh is seeking a Security Penetration Tester to join our dynamic Security Testing team and perform security testing of applications, networks, and infrastructures, including vulnerability assessments, penetration testing, and manual testing techniques.
Role Objective: Penetration Testing Expert is an IT professional specialized in vulnerability assessment and penetration testing program and responsible for the design and performance of application security robustness tests. The candidate should be a highly motivated, detail-oriented, and customer-focused problem solver.
About Capgemini
Capgemini is a global leader in consulting, digital transformation, technology and engineering services. The Group is at the forefront of innovation to address the entire breadth of clients’ opportunities in the evolving world of cloud, digital and platforms. Building on its strong 50-year+ heritage and deep industry-specific expertise, Capgemini enables organizations to realize their business ambitions through an array of services from strategy to operations. Capgemini is driven by the conviction that the business value of technology comes from and through people. Today, it is a multicultural company of 270,000 team members in almost 50 countries. With Altran, the Group reported 2019 combined revenues of €17billion.
المهارات
Job Title - Security Expert on PT
Skill Name - Vulnerability Assessment & Pen testing (VAPT)
Niche Skill - Experience on Vulnerability Assessment and Penetration Testing for Infrastructure, Networks, Web Application, Web Services, Databases, Mobile, etc
Experience - 2 year – 4 years
Primary Skills (Must Have)
Experience in analysis of false positive, risk remediation recommendation and draft report preparation.
Knowledge on open source and commercial tools for e.g Metasploit framework, Nessus, Acunetix, Appscan, nmap etc.
Experience on network, web application/ web services penetration testing & secure code review of applications
Experience Mobile application testing.
Security configuration review of database /servers / firewalls / switches / routers, etc
Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
Wireless penetration testing & application security review
Secondary Skills (Good to Have)
Security Products Knowledge
Good Knowledge on Secure Code Review of applications is desirable.
Demonstration of Proof of concepts for exploits
Wireless Penetration Testing & Application Security Review
Security Configuration Review of Database / Servers / Firewalls / Switches / Routers
Personal Qualities
Ability to work in a high pressure environment, reporting to senior stakeholders.
Ability to review technical designs and to articulate security requirements clearly.
Ability to both accept criticism, and make productive use of it.
Flexible, motivated and a team player.
Excellent verbal and written communication skills to a suitably professional standard that would be appropriate in a court of law.
Key Responsibilities
Perform periodically system and application VAPT (Vulnerability Assessment and Penetration Testing) using automated and manual approach.
Perform Web Application Vulnerability Assessment & Penetration Testing.
Perform Mobile application security testing.
To carry out secure code reviews and to find out critical security flaws in the code
Conduct vulnerability assessments of applications using various open source and commercial tools
Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
To carry out advanced technical analysis on intrusions
Analyze scan reports and suggest remediation / mitigation plan
Providing rich client specific reports
Technically assist team in resolving installation, setup issues, etc of VAPT tools and infrastructure
Experience on network, web application/ web services penetration testing and secure code review of applications
Demonstration of proof of concepts for exploits, manual penetration testing
Wireless and Mobile penetration testing and application security review
Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
Security configuration review of database /servers / firewalls / switches / routers, etc
Experience on network, web application/ web services penetration testing and secure code review of applications
Demonstration of proof of concepts for exploits, manual penetration testing
Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
Research and maintain proficiency in computer application exploitation, tools, techniques, countermeasures, and trends in computer application vulnerabilities
Shift Timing - 9X5, Rotational Shifts
Job Location - Riyadh
تفاصيل الوظيفة
منطقة الوظيفة الرياض, المملكة العربية السعودية
قطاع الشركة خدمات تكنولوجيا المعلومات
طبيعة عمل الشركة شركة توظيف
الدور الوظيفي تكنولوجيا المعلومات
نوع التوظيف غير محدد
الراتب الشهري غير محدد
عدد الوظائف الشاغرة غير محدد
المرشح المفضل
المستوى المهني متوسط الخبرة
عدد سنوات الخبرة الحد الأدنى: 2 الحد الأقصى: 4
https://www.bayt.com/ar/saudi-arabia/jobs/vulnerability-assessment-penetration-tester-4392333/