Devoteam Cyber Trust |Pentest Technical Coordination Officer| Banking Sector

Company Description

Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an end-to-end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and medium-sized companies from all sectors and industries.

Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing cutting-edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients.

The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries.

Job Description

Main responsibilities:

• The Candidate will join the team as Pentest Technical Coordination Officer, providing support with the technical aspects of the pentest organization.
• He also will contribute to the tracking and closure of infrastructure vulnerabilities.

Main Tasks:

• Contribute to the engagement scoping
• Ensure the correct identification and preparation of prerequisite
• Maintain internal pentest infrastructures                                                 
• Review vulnerability classification
• Review report quality
• Maintain report archive
• Ensure registry of vulnerabilities on the appropriate tracking tools
• Provide feedback on corrective action plans
• Perform counter audits to validate finding’s closure
• Report progress and blocking point regarding action plans to the top management
• Assist in the calculation of KPI related to the activity
• Assist in the onboarding of the auditors
• Contribute on problem resolution during the audit
• Contribute on test case selection
• Identify and report alerts if needed
• Structure and Conduct an Internal Audit
• Cybersecurity (general knowledge in cybersecurity risks, frameworks and requirements)
• IT knowledge (global knowledge of IT, its major processes and assets & solutions)
• Penetration tests (general knowledge regarding a pentest project, the organization, the findings…)
• Regulatory (general knowledge in IT and cybersecurity regulators framework)
• Ability to manage a project
• Ability to develop and adapt a process
• Ability to set up relevant performance indicators
• Ability to manage/facilitate a meeting, seminar, committee, training

Qualifications

• JIRA or similar tool                                                 
• Microsoft Office (Excel, Visio, Powerpoint)                                               
• Security assessment tools (Burp, vulnerability scanners, etc…)                                                       

• Language Skills:

• English - Expert

Additional Information

What we offer:

• Professional development and monitoring talent;
• Commitment to our employees' development;
• Collaboration in a company that is constantly growing and evolving;
• Strong organizational culture: collaboration, sharing, flexibility, integrity and low ego.

Would you like to join our team? Then send your CV.