Information Security Officer (Penetration Tester)

Job Brief:

Responsible for designing, testing, evaluating, implementing, supporting, managing, and deploying of security systems/devices used to safeguard the organization's information assets and secure highly sensitive data.

Key Responsibilities:

• Perform operational tasks related to the Information security systems and tools
• Administer information security systems
• Report on the security posture of the organization based on the statistics and KPIs collected from Information security systems within the organization
• Provide technical expertise and advice on all areas of security technology, including network security, platform security, authentication/authorization systems, application security, security architecture, policy enforcement, and security frameworks
• Proactively protect the integrity, confidentiality, and availability of information processed by and/or in the custody of the organization
• Prepare security status and statistics on a timely basis and present to the information security manager

• Lead initiatives with other teams that involves information security related tasks.

Requirements

Education:

Bachelor's degree in computer science, Computer Engineering or any related field.

Level of Experience:

Basic Knowledge in Security Assessment, Penetration Testing and Vulnerability Assessment.

Technical Skills & Knowledge:

Essential:

• Good knowledge of security assessments, penetration testing, and vulnerability assessment
• Good incident investigation skills
• Good security systems administration

Desirable:

• Threat Analysis and threat hunting
• Excellent reporting skills

Certifications & Licensure:

Essential:

• eJPT
• CEH
• eMAPT, eWPT

Desirable:

• OSCP
• Certified Red Team Professional
• Certified Digital Forensics

Tools & Systems:

Essential:

• Penetration Testing tools (Web and Mobile)
• Network devices
• Vulnerability scanning tools

Desirable:

• WAF
• Firewall
• SIEM