Expoint - all jobs in one place

המקום בו המומחים והחברות הטובות ביותר נפגשים

Limitless High-tech career opportunities - Expoint

Citi Group Senior Penetration Tester - VP Hybrid 
Singapore, Singapore 
917344036

25.06.2024

שיתוף

התחבר/י כדי להגיש מועמדות

Who You Are

As someone with an offensive security mindset, you work closely with others to listen to ideas and share suggestions to collectively devise the best approach to remediate vulnerabilities,

continuously learn and enhance skillsets, techniques and methods.

You should have a bachelor’s degree with minimally 5 years of relevant experience. Have a good understanding of industry frameworks and methodologies such as OWASP, OSSTMM, PTES, MITRE ATT&CK, threat modeling, etc. Be certified, or intend to be certified, in accredited security certifications such as OSCP, OSWE, GXPN, GCPN, CISSP, etc.

What You’ll Do

As an individual contributor on our penetration testing team, you are responsible for:

  • Preparing and executing penetration testing assignments on our infrastructure assets and applications

  • Working closely with the engineering teams to provide expert guidance and advice on remediation of identified vulnerabilities

  • Verifying newly discovered vulnerabilities in the environment

  • Reporting security vulnerabilities to businesses, clearly articulating security issues to technical and non-technical stakeholders

  • Mentor, guide and support other team members using your strong technical knowledge

  • Identify inefficiencies in the team’s workflow, suggest solutions and drive outcomes

This role focuses strongly on your ability to perform manual penetration testing on infrastructure related systems and devices. To be a good fit for this role, you should be able to identify security weaknesses and vulnerabilities in various platforms, and efficiently deliver security assessment assignments.

What You’ll Bring

Identify vulnerabilities and zero-day exploits though various means of analysis using:

  • Vulnerability assessment tools such as Nessus, Qualys, Kali Linux, AppScan, Burp Suite, etc.

  • Familiar with scripting languages such as Python

  • Good knowledge of:

    • TCP/IP, IDS/IPS, firewalls, AAA systems, SSH, PKI

    • OS Security - Unix, Linux, Windows,, Android/IOS

    • Common protocols - LDAP, SMTP, DNS, routing etc.

    • Web application infrastructure - application servers, web servers, databases, cloud services, containers technologies etc.

Information Security


Time Type:

Full time

View the " " poster. View the .

View the .

View the

משרות נוספות שיכולות לעניין אותך

כלי לבניית קורות חיים מקצועיים מבית אקספוינט

הצטרפו למאות שיצרו קורות חיים ושדרגו את הקריירה שלהם

צרו קו"ח