Job Accountabilities
- Operate a hands-on role involving penetration testing and vulnerability assessment activities of complex applications, networks and infrastructure
- Develop and maintain security testing plans to continuously exploit vulnerabilities and weaknesses.
- Automate penetration and other security testing on web applications
- Develop meaningful metrics to reflect the true posture of the environment allowing the organization to make sound decisions based on risk based methodology
- Produce action-based, threat-based, reports on security testing results
- Consult with application developers, systems administrators, and management to demonstrate information security testing results, explain the current available threats, and consult on remediation (needed action plan).
- Perform penetration testing and vulnerability research of complex proprietary software and hardware for client services.
- Identify and assess vulnerabilities in systems and applications. This includes utilizing manual and automated testing methods to find and exploit code flaws, misconfigurations, and insecure software.
- Must be updated with the latest global / local market trends in security threats and vulnerabilities.
- Write clear and concise penetration testing reports detailing findings and recommendations.
Qualifications and Experience:
- Bachelor’s degree in IT or computer Science, or related field.
- Comprehensive and practical knowledge of OWASP
- Good understanding and knowledge of codes languages and knowledge of modifying and compiling exploit codes
- Have professional certifications such as CEH, OSCP
- For the Pen-Tester Officer from 1-3 years of relevant experience
- Experience within Banking Industry will be considered as an asset
Skills:
- Excellent command of English and Arabic languages (written and spoken)
- Excellent communication skills
- Excellent planning and organizing skills
- Excellent Business Acumen of external market and up-to-date market trends and practices.