Penetration Testing Expert

Petah Tikva, IL · Cyber Security Services

We are looking for an Application and infrastructure Penetration Testing Expert, who perform various challenging and unique security tests (white, grey, black box Penetration tests). As a member of the offensive security team, you will be tasked with various different projects including unordinary and proprietary systems.

In addition, the Penetration Testing Expert will have responsibility over execution of Red Team projects.

Responsibilities

  • Conducting highly challenging Infrastructure, Mobile and Web application Penetration Tests
  • Providing our global customers reports and summarizing the findings
  • Being an internal and external focal point for complicated cyber-security issues
  • Performing intelligence gathering, planning and exploitation of various technologies and resources
  • Leading application Penetration Tests and architecture reviews
  • Conducting offensive security operations such as Phishing, Social Engineering simulations and DDoS
  • Attacking domain environments and performing Red Team engagements: OSINT, passive and active reconnaissance

Requirements

  • At least one of the following certifications: CEH, OSCP, OSCE, CISSP, CSA
  • Experience looking for security issues such as Cross Site Scripting, SQL Injection, Cookie Manipulation, Buffer Overflows, etc
  • Clean record
  • Experience with Secure Development Lifecycle
  • Reverse Engineering skills X64, ARM etc
  • Familiarity with coding and scripting in one or more of the following: UNIX shell, PERL, Python, Golang C, PHP, React, JS
  • Excellent English technical writing and oral communication skills
  • Self-motivated and able to work independently
  • Experience in at least one of the following: Cross-Site Scripting, Cross-Site Request Forgery, SQL Injection, XML External Entities, Server Side Request Forgery, Remote Code Execution, Uploading Web Shells, Deserialization and Object Injection

Advantage

  • Publications in the cyber-security field
  • Ability to conduct source code reviews
  • Security related projects or developed tools in Git-Hub or equivalent
  • OSCE certification 

Apply