Penetration Tester / Ethical Hacker - KPMG

[Nytro]

IT Security Consultant (Penetration Tester/ Ethical Hacker)

Job profile:

• Conducting technical security assessments and information security projects which require expertise in one or more of the following areas: Penetration Testing / Ethical Hacking, Vulnerability Assessments and IT Security Audits.
  
• Identifying and exploiting technical vulnerabilities in clients’ systems, assessing the business risks of the technical vulnerabilities and communicating these to the client.
  
• Performing security configuration analysis for various operating systems, especially Windows and Linux / UNIX.
  
• The successful candidate will have the ability to learn quickly and work with new technologies, tools and techniques.
  

Some typical projects that you will work on (depending on your expertise) could be:

• Web application penetration testing: trying to find vulnerabilities in web applications (e.g. Internet Banking, eCommerce websites, web portals, etc.) and reporting them to clients. Trying to exploit these vulnerabilities to assess their impact on the business.
  
• Internal network penetration testing: simulating a malicious person who already has access to the internal network of the customer (e.g. a visitor, consultant, etc.). Starting only from a simple network port access you will have to gain access to sensitive information from the client's internal network, gain Domain Admin access or reach other flags.
  
• Mobile application penetration testing: trying to find vulnerabilities in mobile applications (Android, iOS, and Windows phone) and suggesting corrective measures to improve their security.
  
• You may also be involved in other types of technical project that will involve your imagination and out-of-the-box thinking, as well as giving demonstrations and presentations to clients.
  
• We encourage technical research and presentation of our results to local and international hacking conferences.
  

Specific requirements

• Since IT Security is a multidisciplinary field, we are looking for a person who has a broader understanding of technical concepts from one or more of the following areas: web applications, system administration, networking, software development.
  
• We expect you to be familiar with OWASP Top 10, HTTP protocol, SSL, SQL, JavaScript, buffer overflow, TCP/IP, DNS, wireshark, nmap, Linux shell commands, Kali and others.
  
• You must also be able to express your findings in very good technical and business English (oral and written).
  
• Further requirements:
  

- Bachelor’s degree in an IT related field.

- Hands-on experience in at least one of the following: security testing, web application development/testing, system administration, networking, software development.

- Ability to work effectively either individually or as a member of a multi-skilled team.

- Professional discipline, accuracy, reliability and excellent analytical skills.

- Strong interpersonal skills, team spirit, resilience, flexibility, adaptability and self-motivation.

Certifications such as OSCP, OSCE, CEH, LPT, CCNA, MCSE will be considered an advantage.

Our Offer

• A competitive salary and benefits package.
  
• The chance to develop a rewarding professional path and work on challenging assignments.
  
• Support for professional qualifications and personal development through a strong mentoring program.
  
• Work in a friendly team of security professionals who enjoy sharing their experience with colleagues.
  
• The opportunity to participate in a wide variety of technical projects and client environments.
  
• Flexible working program.
  

Nota: Daca sunteti interesati, astept CV-ul vostru in PM.

[Zatarra]

L-am vazut si pe Linked In

[WarLord]

Daca eram in Romania, aplicam.

[Nytro]

Din pacate nu se poate lucra remote.

Astept CV-urile persoanelor interesate. Proiectele garantez ca o sa va placa.

[Nytro]

Anuntul e si pe BestJobs daca nu vreti sa trimiteti CV-ul pe PM: IT Security Consultant (Penetration Tester) la S.C. KPMG ROMANIA SRL, BUCURESTI - BestJobs

[saber05]

Eu am aplicat pe Linked In.

Poti sa imi spui te rog frumos cate posturi sunt disponibile?

Multumesc

[Guest CM3D]

@Aerosol .

[iulik]

Stie undeva unde se pot da aceste certificari OSCP, OSCE, CEH, LPT, CCNA, MCSE in cluj?

scuze de offtopic...

[WarLord]

@ManutaDeAur - OSCP, OSCE - se dau online, prin VPN, conectat la laboratoarele lu' OffSec.

[Nytro]

@saber05 - Unul sau doua, depinde.

@ManutaDeAur - Haide la noi si plateste firma.

[Nytro]

Inca se cauta, cine e interesat imi poate da un PM.

[Andrei.Bratosin]

Nu mai e valabil

[Nytro]

Mai este valabil.