About a role:
Primary responsibility will be conducting manual and automated pentests of Web applications, both internal and exposed to the Internet. This position require also further development of various Security solutions and services that aim to protect endpoints and data, to evaluate vulnerabilities, to monitor security breaches and support incident response. You will also support Security Operations Center in daily duties and investigation on escalated events from different security platforms.
Responsibilities:
Pentesting Web Applications:
- Perform manual and/or automated pentests of Web Applications accordingly with schedule or on-demand
- Perform discovery scans on a given scope to determine any existing applications not yet listed in inventory
- Gather information necessary to conduct authenticated and/or non-authenticated tests
- Maintain solutions used for automated scans, ensure proper scheduling and least privilege principle
Support team and local units in executing post-pentest recommendations
-
Security tools management:
- Supporting SOC team in monitoring EDR, NDR, SIEM platforms when needed
- Ensure that security monitoring tools are working properly
- Support team in deployment of necessary security tools in the infrastructure
- Contribute to the development of operating capabilities of the team members
Interpret results of vulnerability scans in context of ongoing security incidents
Possible evolutions:
Security expertise, Forensics, Purple team pentests
Technical domains to be covered
- Burp Pro, Nmap
- Purplemet, Qualys, Bitsight
Vulnerability scanner, preferably Tenable Security Center
Requirements:
- Essential understanding of at least 3 of below knowledge domains:
- Web Application pentesting
- Windows/AD Administration
- Linux Administration
- Networking
- Security Monitoring
- Vulnerability management
- Forensics & Incident Response
- Good knowledge and strong interest in IT Security (best-practices, standards, technology)
- A proven experience of working with security tools like AV, EDR, SIEM, NDR
- Experience with security incidents handling as advantage
- Quick learner with strong time management skills
- Able to work in multi stakeholder environment
- Strong troubleshooting skills and good attention to details
- Curiosity and ability to learn