Lead Engineer - Penetration Testing (Cyber Ops & Technologies)

Position Overview

The Penetration Testing function will be responsible for planning and overseeing the delivery of testing and certification services, or designing and performing tests and check cases to determine if infrastructure components, systems and applications meet confidentiality, integrity, authentication, availability, authorisation and non-repudiation standards. He/she translates requirements into test plans, writes and executes test scripts or codes in line with standards and procedures to determine vulnerability from attacks. He/she certifies infrastructure components, systems and applications that meet security standards. Where required, he/she will report on testing outcomes and activities, provide recommendations and manages stakeholder expectations, and ensure compliance with assessment and testing standards, processes and tools. He/She will also help to develop the organisational security testing capability and support knowledge management.

Role & Responsibilities

• Operate a hands-on role involving Penetration testing and Vulnerability assessment of the ICT systems (i.e.  Web, Mobile, Thick Client, Network).
• Plan and create penetration testing methods, scripts, and tests.
• Carry out scoping activities to identify what components of a given system require penetration testing
• Define test requirements and criteria to carry out the Penetration Testing.
• Create reports and recommendations from findings, security issues and level of Risk.
• Advise on methods to fix or lower security risks to Development Team.
• Present findings, Risks, and conclusions to stakeholders.
• Automate penetration testing activities to save time and effort.
• Be a mentor and carry out training sessions to new joiners and junior resources on Penetration Testing activities.
• Involves on the Security Testing and other Tools procurement activities.
• Work on the Penetration Testing Process improvement areas.

Requirements

• 5+ years of relevant experience including Penetration Testing on (Web Application, Mobile, Thick Client and Infrastructure applications)
• Business risk along with good reporting writing and client presentation skills. Consulting experience within a Professional Services organization.
• Strong analytical skills and ability to work independently.
• Have a strong sense of responsibility towards delivery of project objectives
• Equipped with programming skills in at least one of following programming language/environment such as SAP, ABAP, .NET, Python, Ruby, JAVA or Regular expression.
• Experience in healthcare industry will be an added advantage.
• Must have the OSCP or CREST-CRT Certifications. Any other Certifications like OSCE, CISSP would be advantage.
• Would be a good team player.
• Excellent verbal and written communication skills.

Apply Now

NOTE: It only takes a few minutes to apply for a meaningful career in HealthTech - GO FOR IT!!

#LI-SYNX13