Expoint - all jobs in one place

מציאת משרת הייטק בחברות הטובות ביותר מעולם לא הייתה קלה יותר

Limitless High-tech career opportunities - Expoint

Citi Group Senior Penetration Tester 
Hungary 
989060714

26.07.2024

In this role you will get a chance to work in a unique environment with diverse technology implementations. Personal development is important, all of our analysts acquire and maintain industry-accredited security certifications (the candidate must have or be willing to obtain the following ones) – GIAC, GDAT, GXPN, GWAPT, GPEN, GCIH, OSCP, OSCE, CREST, GMOB and CEH.

What you will do:

  • Active collaboration with defensive (Blue) teams, participating and leadingpurple teamexercises.
  • Perform adversary emulation exercises and mimic APT actors
  • Identifying weaknesses and vulnerabilities within the system and proposing countermeasures.
  • Testing of the overall security of critical infrastructure components and applications, provide recommendations for corrective actions.
  • Reporting information security vulnerabilities to businesses and vendors.
  • Providing penetration testing services to Citi businesses globally through a comprehensive testing process.
  • Work with industry leading technologies and products

Your profile:

  • Have at least 4-6 years working experience in a relevant role. Confident in penetration testing / ethical hacking.
  • Subject matter expert in offensive information security including databases, networking, operating systems, applications, and programming.
  • Bachelor’s degree/University degree or equivalent experience.

The candidate is expected to alreadybe familiar withthe majority of the below tools:

  • Exploitation frameworks, e.g. Cobalt strike, PoshC2, Metasploit, Core Impact, etc.
  • Penetration testing (application and/or infrastructure).
  • Identifying, researching, validating, and exploiting various different known and unknown security vulnerabilities on server and client side.
  • Being familiar with reverse engineering and exploit development techniques.
  • Social Engineering campaigns, e.g. phishing, vishing, SET
  • Deep understanding of OSI model.
  • OS Security, e.g. Unix, Windows, mainframes.
  • Knowledge and experience with MITRE ATT&CK framework.

The following requirements area plus as we are willing to investin training and development in the security and vulnerability space:

  • Purple teaming and Enterprise security standard testing.
  • Articulating security issues to technical and non-technical audience.
  • Knowledge of tools and processes used to expose common vulnerabilities and implement countermeasures.
  • Experience using open source and vendor vulnerability assessment tools.
  • Background in a similar role.
  • Understanding enterprise networks.
  • Being familiar with reverse engineering techniques.

By joining Citi Hungary, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive compensation package and enjoy a whole host of additional benefits that support you (and your family) to be well, live well and save well:

  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Socially active employee communities with diverse networking opportunities

Information Security


Time Type:

Full time

View the " " poster. View the .

View the .

View the