Penbrothers International Inc.
Penbrothers International Inc.

Information Security Engineer  

Penbrothers International Inc.

  • Makati, Philippines
    6th Floor, OPL Building, Makati, Metro Manila, Philippines
    Makati
    Metro Manila
    Philippines
    Philippines
  • Full timeFULL_TIME

Expired 3 years ago

2020-10-28T16:00:00+00:00
Job closed.

Job Description

  • Provide innovation within the context of the Vulnerability and Penetration Testing (VAPT) program in relation to both process and technology.
  • Design, implement, and support VAPT solutions identified as necessary for the protection of Firm assets.
  • Serve as a Subject Matter Expert (SME) for the VAPT function.
  • Serve as the system owner for common VAPT toolsets, platforms, and processes.
  • Provide assessment reports that are easily understandable by the target audience and include practical and reasonable recommendations based upon sound risk management principles.
  • Assess the sufficiency of policies, standards and procedures relative to VAPT best practices.
  • Author standards and procedures designed to continually improve security posture.
  • Engage in continual environmental monitoring to understand the threat environment relative to the organization.
  • Perform authorized attack surface reviews and penetration tests against specific targets at the direction of the Information Security Manager.
  • Provide input into security risk assessments by leveraging specialized knowledge.
  • Report compliance failures to management for immediate remediation.
  • Maintain assigned systems to ensure availability, reliability, integrity, including the oversight of current and projected capacity, performance, and licensing.
  • Define, create, and delivers reports and relevant metrics to the Information Security Manager.
  • Contribute to the Firm's security-related information repositories and other marketing/awareness endeavors.
  • Mentor junior members of the VAPT group and provide constructive consultation to another groups such as Development.
  • Provide exemplary customer service by striving for first call resolution and demonstrating, empathy, respect, professionalism, and expertise.

Minimum Qualifications

The Information Security Engineer will assess the security posture of existing and proposed Firm systems, platforms, and processes to protect and continually improve the confidentiality, integrity, and availability of information systems in accordance with the Firm's business objectives, regulatory requirements, and strategic goals.

  • Possess a Computer Science Bachelor’s Degree or substantial equivalent experience
  • CISSP or SSCP, GIAC, GPEN or GWAPT, Offensive Security OSCP preferred
  • Strong professional experience in information security with a focus on vulnerability assessment and penetration testing
  • Commanding knowledge of VAPT concepts and best practices, including the requirements for
  • White Hat/ethical hacking & expert understanding of the difference between a vulnerability assessment and a penetration test in the context of assessment scope, objectives, and deliverables
  • Extensive experience with common automated VAPT tools such as Nessus, Appscan, Burp Suite,
  • Nipper, and Trustwave
  • Proficiency with other common attack tools and frameworks such as Wireshark, Kali, and Metasploit, etc.
  • Proficiency with mobile platform security technology, including vulnerability identification and exploitation tools as well as mobile platform security best practices, frameworks, etc.
  • Ability to validate the presence of identified vulnerabilities with accuracy & mastery of common application platforms and technologies in order to effectively understand and evaluate complex application assessments via the use of manual techniques and simple tools such as proxies and browser plugins
  • Authoritative understanding of OWASP, CVE, general security controls, and other foundational topics such as the latest application and operating system exploits
  • Knowledge of common scripting and programming languages is advantageous
  • Ongoing commitment to understanding the threat landscape and common adversary motivations/practices. Ability to quickly adapt practices to evolving circumstances
  • Ability to maintain critical thinking and composure under pressure
  • Strong written and oral communication skills. Ability to convey complex concepts to non-technical constituents.
  • Proficiency in oral and written English
  • Capable of assisting in the preparation of internal training materials and documentation
  • Ability to be productive and maintain focus without direct supervision
  • Understands VAPT in the context of risk management and organizational priorities
  • Passionate in the practice and pursuit of VAPT excellence

Jobs Summary

Job Level
Associate / Supervisor
Job Category
IT and Software
Educational Requirement
Bachelor's degree graduate
0
Office Address
6th Floor, OPL Building
Industry
Consulting/Business Services
Vacancy
1 opening
Website
http://www.penbrothers.com

Feel secure when applying: look for the verified icon and always do your research on a company. Avoid and report situations when employers require payment or work without compensation as part of their application process.

About Penbrothers International Inc.

Penbrothers works with startups and SMEs from all over the world, helping them build and scale their teams with talent in the Philippines at a fraction of the cost. With several offices in various locations, Penbrothers makes it easier for companies to focus on their core business by taking care of the talent sourcing, hiring, payroll and office space.

People also applied to

  1. Home

Other Recommended Jobs

Apply jobs in

Job Categories:

Related to your search: