Cyber Security Manager & Consultant (Offensive Security) - Malaysia

Key Role

As Cyber Security Manager & Consultant, you will lead and manage a team of cyber security experts as well as lead and execute variety of engagements, conducting advanced hands-on penetration testing beyond automated tool validation, which will focus on targets that may include network devices, servers, web and mobile apps, web APIs, wireless infrastructures, IoT devices, and other information systems.

As a manager you will help raise the profile of the team, support in solving complex business issues from strategy to execution, play a key part in making sure that we offer service offerings tailored to the local market and help coach and mentor team members.

This role is ~35% team management and ~65% technical.

What your keys responsibilities will be

Responsibilities may include the following, but are not limited to:

• Oversee day-to-day teams' operation during Asia-Pacific time zone
• Team management of 10+ consultants including performance management
• Lead and execute network, web application, wireless, and social engineering penetration tests that will vary in level of complexity from simple to potentially complex
• Manage complex project delivery that include planning, scheduling, controlling and tracking to meet project scope and timeline
• Act as main technical point of contact for local customer escalations during the shift
• Maintain up-to-date knowledge of the IT security industry, including awareness of new or revised security solutions, security standards, trends / best practices, offensive techniques, and tools
• Author quality penetration test reports with professional documentation of identified and exploited vulnerabilities/weaknesses and provide detailed remediation guidance for findings
• Support sales managers by serving as a consultant in pre-sales, including assessment of client needs, project scopes and proposal preparation
• Manage team members education & development
• Monitoring quality of service and products to clients and carrying out improvement or development as necessary
• Actively support the hiring process

What we are looking for

Minimum Experience:

• Bachelor's degree, preferably in computer science or information systems, or equivalent work experience
• Minimum of three years direct Cyber Security experience in a security analyst, engineer, architect, consultant or a similar role
• Minimum of one year of experience in penetration testing
• Proven experience managing a team of at least five engineers/consultants
• Technical knowledge across a broad range of computing platforms and network protocols
• High proficiency in a variety of operating systems such as Unix/Linux/Mac/Windows operating systems, including bash and PowerShell
• High proficiency in manual techniques for penetration testing (network equipment, servers, web applications, APIs, wireless, mobile, databases, and other information systems)
• Proven professional experience testing web applications for common web application security vulnerabilities as defined by OWASP, including input validation vulnerabilities, broken access controls, session management vulnerabilities, cross-site scripting issues, SQL injection and web server configuration issues
• Knowledge of at least one programming languages: Python, Perl, Java, .NET, C., Shell Scripting
• Tools – Proxies, Port Scanners, Vulnerability Scanners, Exploit Frameworks (ex: Burp, Nessus, Nmap, Metasploit)
• Strong oral and written communication skills, including a demonstrated ability to prepare quality documentation and presentations for technical and non-technical audiences
• Certifications such as OSCP, OSCE, CREST CRT, GIAC (GXPN, GWAPT, GPEN, GMOB) others are highly desired
• Experience managing communication with geographically distributed teams

Language Skills:

• Excellent communication skills in English (written and spoken), other languages such as Mandarin is an advantage.

Required Skills:

• Excellent interpersonal skills, capable to interact with people at all levels, team player
• Strong leadership and ability to take fast decisions
• Action-oriented and results driven
• Organized with strong time-management skills
• Flexible attitude, reliable
• Customer friendly approach and appearance
• Strong problem-solving and analytical skills

What we are offering you

You will get the opportunity to work in a multi-cultural environment and with a global team of elite penetration testers led & managed by technical minds just like you!

What’s most important to us is that you feel respected and considered, but also that you have the chance to do the best work of your life, while still having a life. That is why you have will have minimum work outside business hours and weekends, flexible work arrangements with a home office plan, have the chance go to conferences, dedicated time for security research, attend advanced trainings and pass highly recognised certifications, and much more!

We are offering you to work in a thrilling, challenging but fun environment where what you do is important and meaningful. At wizlynx, there is no limit but the sky. If you wish to learn and get involved in other areas of cyber security or the business, we will ensure that you get all the help you need to succeed. Furthermore, as senior penetration tester, you will be part of the wizlynx red teaming services consisting in emulating real-world threats using cybercriminals TTPs.

Finally, you will get the chance to make a difference to the cyber security community by participating and helping improve our world famous PwnTillDawn CTF competitions and online platform.

Who we are?

wizlynx group is an ethical, trustworthy, and vendor agnostic Cyber Security provider headquartered in Basel, Switzerland and founded in 1992. Our customers rely on us to effectively protect their business and trade secrets against any form of cybercrime, such as malware outbreak, malicious insiders, cyberattacks, cyber espionage, data leakage, and more.

We live and breathe Cyber Security! For this reason, we have designed a service portfolio that covers the entire risk management lifecycle to ensure our customer benefits the most from our passion and experience, but primarily to maximize their protection.

Leave no stone unturned with wizlynx – the perfect partner to ensure high-quality services and assessments giving you a true sense of security!

Apply now if you think you are a good match! We will respond to let you know what the next steps are, but in the meantime feel free to check us out: https://www.wizlynxgroup.com/