Penetration Tester

Manila, Manulife Business Processing Services

Applications have closed

Manulife

Manulife is a leading financial services group. We provide financial advice, insurance, as well as wealth and asset management solutions for individuals, groups and institutions.

View all jobs at Manulife

We are a leading financial services provider committed to making decisions easier and lives better for our customers and colleagues around the world. From our environmental initiatives to our community investments, we lead with values throughout our business. To help us stand out, we help you step up, because when colleagues are healthy, respected and meaningfully challenged, we all thrive. Discover how you can grow your career, make impact and drive real change with our Winning Team today. 

Working Arrangement

Hybrid

Job Description

Are you looking for a supportive and collaborative workplace with great benefits and clear career development? You’ve come to the right place.

Why choose Manulife?

  • Competitive Salary packages and performance bonuses
  • Day 1 HMO + FREE coverage for your dependents (inclusive of same-sex partners)
  • Retirement savings benefit
  • Rewarding culture that values wellness and well-being
  • Performance Bonus
  • Global network of industry experts
  • Extensive training resources

Working Arrangement: Hybrid

Shift Schedule: Night Shift (8pm to 5am) Philippine Time

Job Description:

Manulife’s Global Cybersecurity Services - Application Security is building up a penetration testing Centre of Excellence (COE) to deliver penetration test related capabilities for all segments in Manulife. As a Penetration Tester, you will be working closely with our business team and second line of defense, to assess scope and level of effort based on identified areas of risk and execute assigned engagements in alignment to common penetration testing industry frameworks.

Have the skills and knowledge for the job? Learn more about the opening below!

Key Responsibilities:

  • Performing penetration tests against internal and/or external environment of different organizations including web applications, microservices and mobile applications.
  • Evaluating and attempting to bypass the organization’s current information security controls.
  • Write reports including technical details, risk analysis and providing remediation recommendations for identified issues.
  • Participate in project related meetings: information gathering, solution design, project checkpoints.
  • Propose, examine and assist in the acquisition and development of suitable penetration testing tools to ensure the delivery of quality services to our business.
  • Maintain an ongoing awareness of trends in penetration testing technology, as well as target environment technologies and regulatory requirements.
  • Apply creative problem solving throughout a secure software development life cycle to continuously improve the effectiveness of the end-to-end process.
  • Ideate. Test. Learn. Iterate. Bring a flexible, adaptive mindset, comfortable with ambiguity in a rapidly changing technology environment.
  • Be a continuous learner, not only for your own career, but from teams’ successes and failures.
  • Embrace open-source communities, both internally and externally, sharing your knowledge across your team and peers.

Qualifications:

  • Degree in Computer Science or related discipline.
  • Demonstrated experience (minimum 3 years) in performing hands-on penetration tests against external and internal networks, operating systems, web applications and more.
  • Amenability and readiness to work onsite and from home anytime (dependent on business need AND/OR current external environment/situation).
  • Demonstrated technical knowledge of current vulnerabilities, exploits and tools.
  • Holds relevant Information Security or related Certification such as OSCP, OSCE, CEH, GWAPT, GPEN, eWPT.
  • Experience in developing advanced attacking capabilities and methods.
  • Extensive technical knowledge of security industry best practices and procedures.
  • Demonstrated experience with security assessment frameworks and procedures, including following industry best practice methodologies for penetration testing and the ability to perform both manual and automated testing.
  • Experience in researching evolving exploits, techniques, and tools in support of penetration testing efforts.
  • Experience in developing security tools, using scripts and utilities to automate assessment and analysis activities.
  • High degree of integrity, competence, adaptability, resilience and initiative.
  • Experience working in an international environment with people from multiple cultures preferred.

**People Leader Role: No

Learn more about opportunities with us at jobs.manulife.com  

Join our global network of industry experts! Apply today.

** This job description does not represent a comprehensive listing of job duties that are required of the employee performing this role. We reserve the right to change duties or assign additional duties at any time with or without notice.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law. 


It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact MBPS_Talent_Attraction_Team@MANULIFE.COM


Who is MBPS?


Manulife Business Processing Services (MBPS) is a global shared service center providing administrative, finance, investments, contact center, information technology, underwriting, actuarial, and marketing services to Manulife and John Hancock companies around the world.

About Manulife and John Hancock

Manulife Financial Corporation is a leading international financial services group that helps people make their decisions easier and lives better. With our global headquarters in Toronto, Canada, we operate as Manulife across our offices in Asia, Canada, and Europe, and primarily as John Hancock in the United States. We provide financial advice, insurance, and wealth and asset management solutions for individuals, groups and institutions. At the end of 2022, we had more than 40,000 employees, over 116,000 agents, and thousands of distribution partners, serving over 34 million customers. At the end of 2022, we had $1.3 trillion (US$1.0 trillion) in assets under management and administration, including total invested assets of $0.4 trillion (US $0.3 trillion), and segregated funds net assets of $0.3 trillion (US$0.3 trillion). We trade as ‘MFC’ on the Toronto, New York, and the Philippine stock exchanges, and under ‘945’ in Hong Kong.

Manulife is an Equal Opportunity Employer

At Manulife/John Hancock, we embrace our diversity. We strive to attract, develop and retain a workforce that is as diverse as the customers we serve and to foster an inclusive work environment that embraces the strength of cultures and individuals. We are committed to fair recruitment, retention, advancement and compensation, and we administer all of our practices and programs without discrimination on the basis of race, ancestry, place of origin, colour, ethnic origin, citizenship, religion or religious beliefs, creed, sex (including pregnancy and pregnancy-related conditions), sexual orientation, genetic characteristics, veteran status, gender identity, gender expression, age, marital status, family status, disability, or any other ground protected by applicable law. 

It is our priority to remove barriers to provide equal access to employment. A Human Resources representative will work with applicants who request a reasonable accommodation during the application process. All information shared during the accommodation request process will be stored and used in a manner that is consistent with applicable laws and Manulife/John Hancock policies. To request a reasonable accommodation in the application process, contact recruitment@manulife.com.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  14  1  0
Category: PenTesting Jobs

Tags: Application security CEH Computer Science eWPT Exploits Finance GPEN GWAPT Microservices OSCE OSCP Pentesting Risk analysis SDLC Security assessment SSDLC Vulnerabilities

Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Gear Insurance Salary bonus Team events Wellness

Region: Asia/Pacific
Country: Philippines

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.