Cyber Security Specialist - Penetration Testing

Job description, responsibilities and duties

What are my responsibilities?
• Assess enterprise applications with tool-based and manual penetration testing methods (Web Technologies, Rich Clients, SAP, Networks, protocols)
• Investigate compliance of OSs, databases, etc. to existing security measure plans (Windows, Linux, Apache, MYSQL, …)
• Find new vulnerabilities in business applications and prove their relevance with exploit scripts
• Evaluate vulnerabilities, including CVSS rating
• Write client reports that detail: approaches for exploiting vulnerabilities, risk evaluation, and mitigation suggestions
• Explain vulnerabilities and their impact to technical experts, as well as management personnel
• Perform root-cause analysis and lessons learnt with developers and architects to improve security sustainably (not simply hotfixing identified vulnerabilities)

More about us on : http://www.siemens.sk/download/velki-ludia/

Required education, skills and personality requirements

Required education
University education (Bachelor's degree)

Educational Specialization
Bachelor’s degree in Computer Science (or related field) or equivalent work experience

Language Requirements
Fluent in spoken and written English, including security terminology; proficiency in German a plus





Number of years of experience
2

Personality requirements and skills
What do I need to qualify for this job?

Technical skills
• Master’s degree in Computer Science/Information Technology; specialization in IT Security a plus
• or experience in hands-on penetration testing or red team engagement
• Experience in current attack methods, manual penetration testing methods, and hacking tools–Nmap, Metasploit, Kali Linux, Burp Suite Pro–as a starting point for intensive manual security tests and self-developed testing tools
• Review and ensure the secure configuration of OSs (Windows, Linux), network devices (firewalls, routers), and mobile platforms (iOS, Android)
• Ability to understand, find, verify, and explain security vulnerabilities
• Ability to research and characterize security vulnerabilities, define appropriate countermeasures, and write comprehensible client reports

Soft Skills
• Ability to present and explain complex technical topics to both management personnel and technical experts
• Ability to work in a self-guided and result-oriented fashion, with a clear desire to become an acknowledged technical expert in your own area of expertise

We offer

• Training and development program (business and product trainings, e-learning, language courses, soft skills trainings,…)
• Health program (contracted wellness providers, sport centers, salary reimbursement in case of illness)
• Family care program (subsidy for newborns, maternity leave, kindergardens, summer camps)
• Retention program (work anniversary, life anniversary, additional pension plan, employee loans)
• Extra days-off (bridge days, sick days)
• Socializing programs (teambuildings)
• Referral employee program (bonus for new hire)