IT Pentest Engineer

Responsibilities:

• Identify the target systems and the goal, review the information available, and undertake available means to attain the goal

• Conduct white box or black box testing

• Understand complex computer systems and technical cyber security terms

• Work with clients to determine their requirements from the test, for example, the number and type of systems they would like testing

• Plan and create penetration methods, scripts, and tests

• Carry out remote testing of a client's network or onsite testing of their infrastructure to expose weaknesses in security

• Simulate security breaches to test a system's relative security

• Create reports and recommendations from your findings, including the security issues uncovered and the level of risk

• Advise on methods to fix or lower security risks to systems

• Present your findings, risks, and conclusions to management and other relevant parties

• Consider the impact your 'attack' will have on the business and its users

• Understand how the flaws that you identify could affect a business, or business function, if they're not fixed

Requirements:

• Degree in Computer Engineering, Computer Science, or an IT-related discipline

• Extensive experience in penetration testing skills to penetrate organizational systems and networks for at least 3 years

• 8+ years working in IT security or related field (Cyber Security) with specific experience in the following:

- Mobile technologies and OSes (i.e., Android, iOS, Windows, hardware, and applications)

- C/C+/C++ Perl, Python, Shell, or other programming and scripting languages

- Assessing operating system capabilities and vulnerabilities

- Assessing hardware capabilities and vulnerabilities

- Malware and code analysis, reverse engineering

- Signature development, Yara rule development

- Mitigation strategy development

- Software, tool, and exploit development

• Proficient in utilizing a wide variety of tools for vulnerability and penetration testing

• Extensive experience in performing network, system, and application-level testing using established test protocols and methods

• Proficient in researching and evaluating emerging technologies relevant to information systems security

• Ability to interpret agency-specific and federal security regulations in relation to security testing

Benefits:

• Join a growing company in the Middle East region

• Competitive salary + Excellent remuneration package

• Relocation package including flight tickets and accommodation provided by the company

• Opportunity to work in Dubai, one of the most dynamic and innovative cities in the world