Enable job alerts via email!
Vulnerability Assessment and Penetration Testing Engineer
Dicetek LLC
Singapore
On-site
SGD 150,000 - 200,000
Full time
Job summary
A leading cybersecurity firm in Singapore seeks a Reporting VP, Cybersecurity Assessment Lead-Manager. In this role, you will conduct security assessments and penetration testing for web, mobile, and API applications. Your responsibilities include reporting security findings, collaborating with development teams, and recommending security enhancements. Preferred qualifications include OSCP certification and experience in cloud security and DevSecOps practices. This position emphasizes a culture of security awareness and continuous improvement.
Qualifications
- Experience with security assessments and penetration testing.
- Knowledge of cloud security and DevSecOps practices.
- Certification in OSCP is preferred.
Responsibilities
- Conduct security assessments on web, mobile, and API applications.
- Document and report security findings clearly.
- Work with development teams to integrate security into the SDLC.
Skills
As the Reporting VP, Cybersecurity Assessment Lead-Manager, you will be responsible for various key responsibilities related to security testing, reporting, technical walkthroughs, recommendations, and collaboration. Your role will involve conducting security assessments and penetration testing on web, mobile, and API applications. You will need to identify and exploit vulnerabilities to assess their impact and risk, as well as perform static and dynamic code analysis to uncover security flaws. Utilizing your knowledge of OWASP vulnerabilities and other common security issues, you will guide testing efforts and conduct Static Application Security Testing (SAST), Software Composition Analysis (SCA), and image scanning to identify vulnerabilities in code, dependencies, and container images.In terms of reporting, you will be expected to document and report security findings in a clear and concise manner. You will provide detailed technical reports and executive summaries for various stakeholders, track and manage vulnerabilities through their lifecycle, and ensure timely remediation. Additionally, you will conduct technical walkthroughs of security findings with development and engineering teams, explaining vulnerabilities, their impact, potential exploitation scenarios, and providing guidance on remediation strategies and best practices.Your role will also involve developing and recommending security controls and countermeasures to mitigate identified risks. It is essential to stay updated with the latest security trends, vulnerabilities, and attack vectors, and propose enhancements to existing security policies and procedures. Collaboration will be a key aspect of your responsibilities as you work closely with development teams to integrate security into the software development lifecycle (SDLC) and foster a culture of security awareness and continuous improvement within the organization.Preferred skills for this role include certifications such as OSCP, experience with cloud security and DevSecOps practices, and knowledge of secure coding practices and code review techniques.,
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
