Infosec Penetration Tester

It is the spirit of Bayanihan that drives us to continue our legacy of excellence and commitment to care. As an organization, we achieve our successes through good, honest, and persevering hard work - TOGETHER. It is in this way in which our company was built; we progressed as the country's leading Pharmaceutical company, not by sheer luck, but by pure perseverance, integrity, and brotherhood. Grow with us, and be a part of the Bayanihan spirit.

Role Overview:

• Conducts thorough penetration testing on the company's applications and network endpoints to identify potential security weaknesses. Vulnerability Assessment and Penetration Testing report
• Documents and maintains records of testing activities and results
• Analyzes findings from External penetration tests and provide comprehensive reports with actionable remediation recommendations. 
• Collaborates with development and IT teams to address and rectify identified vulnerabilities.
• Maintains an up-to-date knowledge base of current vulnerabilities, attacks, and countermeasures. Works with the Security Operations team in updating the security playbooks based on latest trends
• Develops and implements testing scenarios that simulate real-world attacks to evaluate the company's security posture. Develops and evaluates negative scenarios in relation to the business flow of the target application
• Assesses and recommends new security tools and technologies to enhance the company's security framework. Annual budget reporting should include a detailed assessment of the current technology stack, identifying vulnerabilities and recommending updates to enhance security and efficiency
   

Required Qualifications:

• Bachelor's Degree holder
• With three to four (3-4) years of relevant work experience
• Certifications desired for the role: Comptia Pentest +, Certified Ethical Hacker (CEH), GIAC Penetration tester, Cloud Pentester, Mobile and Web Application Pen tester, etc.
• Must have strong background on IT network essentials, web application gateways, Application Programming Interfaces, Zero Trust Framework and other relevant Infosec standards like ISO27001, NIST, CISCSC, etc.
• Communication: Excellent verbal and written communication skills. Effective communication is essential in order to Influence the different IT enablers in delivering the requirements. 

We are committed to providing our employees with the best possible experience. As a LEARNING ORGANIZATION, we are eager to support your development and create the most fitting career path for you. As DESIGNERS AND DRIVERS OF INNOVATION, we are keen to provide you with opportunities to positively transform processes that will intensify business growth. As a NURTURING FAMILY, we are passionate about conducting programs that can promote your wellness, and help you be the best that you can be. As BELIEVERS OF OUR PURPOSE, we are and we will always remain earnest in giving meaningful tasks that will keep you delighted and fulfilled - at work and beyond.