Ethical Hacking Expert
Bucharest, RO
Vodafone
Vodafone is a leading technology communications company in Europe and Africa, keeping society connected and building a digital future. Find out more!Your day to Day
Join us and help enhance Vodafone's security by conducting deliberate and controlled attacks, mirroring the methods employed by potential attackers.
This position carries the responsibility of designing and ensuring the efficacy of security tests, as well as evaluating current security solutions in line with Vodafone's standards.
The role involves collaborative work with testers and managers to define the scope of penetration testing, engaging with business functions for coordinated execution, and delivering comprehensive reports.
Responsibilities
As tester, you will be executing security tests, using various MITRE tactics and techniques to uncover weaknesses and ensure the highest standards of cyber protection across the Vodafone group.
You must also keep in touch with new technologies and methodologies and maintain accurate knowledge of information security issues to create a safer digital environment.
You will be responsible for developing and maintaining comprehensive security testing plans.
You will also lead the execution of specialized engagements, defining testing prerequisites, managing client needs, and providing recommendations to address any identified issues.
Additionally, you will act as the primary contact for penetration tests, building relationships with stakeholders across the Vodafone business, ensuring internal stakeholders are aware of security standards and methodologies, and playing a key role in the operational process by reviewing and approving testing reports, prioritizing requests, and effectively coordinating team assignments.
Deliverables
You will make sure that security testing needs are clearly defined and executed, followed by detailed reports on any defects found and provide support to project and technical specialists to scope the tests and identify proper remediation solutions.
Additionally, you will:
- deliver high-quality technical reports that outline both the technical and business risks associated with any vulnerabilities identified
-include clearly defined steps for replicating exploits and practical strategies for remediation.
-provide retesting scripts and assistance with remediation solutions
-develop solutions and code for automating security testing, document test cases, and coordinate and assist international teams through consultancy activities and management of specific IT project situations.
You will develop and maintain comprehensive security testing plans, overseeing the delivery of security testing demand throughout all stages, reviewing, and approving testing reports, as well as coordinating team assignments effectively.
Additionally, you will be tasked with developing and maintaining tester training and upskilling programs in alignment with project requirements.
You will also ensure the overall security posture of testing initiatives and programs by advocating for a balanced, risk-based approach to security, coaching security team members for success, and managing stakeholders at all levels.
Required Proficiency
- 5+ experience in Penetration Testing and in coordinating/leading teams
- Discovery and registration of vulnerabilities (CVEs) or notable results in cybersecurity competitions and/or research and innovation activities
- CPTS, OSEP ,OSWE, CWEE, eCPTX or similar
- University degree in IT fields, Cybersecurity preferred
- Applied knowledge with Windows (client/server), Linux/Unix, VMWare and cloud technologies (AWS, Azure, GCP)
- In-depth knowledge of the application development process and of at least one scripting or programming language (Java, Python, PowerShell, PHP, VB.NET, Assembly, etc.)
- Strong documentation skills
- In-depth knowledge of tools specific to CI/CD automation and/or SOAR
- Experience in consulting and/or project management activities in the field of cyber security
- Experience in coordination and management of international teams
Sounds like the perfect job? We’ve got even more to offer:
•Work from Home – hybrid approach
•Medical and dental services
•Life and hospitalization insurance
•Dedicated employee phone subscription
•Special discounts for gyms and retailers
•Annual Company Bonus
•Ongoing Education – we continuously invest in you to ensure you have everything needed to excel on the job and enhance your skills
•You get to work with tried and trusted web-technology
•Getting in on the ground floor of a technology changing company
•We let you write your own story by planning vacations: go for a trip, experience new things, have fun and enjoy your 23 days off.
•Special Paternal Program - 4 months of paid paternity leave
#VOIS
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Azure CI/CD Cloud Ethical hacking Exploits GCP Java Linux OSWE Pentesting PHP PowerShell Python Scripting SOAR UNIX VMware Vulnerabilities Windows
Perks/benefits: Career development Health care Medical leave Salary bonus Team events Travel
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.