Enable job alerts via email!
Network Security Engineer
Gmi Advisory
Johannesburg
On-site
ZAR 500 000 - 750 000
Full time
Yesterday
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A cybersecurity firm in Johannesburg is looking for an experienced penetration tester to lead assessment efforts on web and mobile applications. You will replicate malicious techniques, prepare detailed reports for stakeholders, and consult on security improvements. Candidates should have a bachelor’s degree and 3+ years of experience in IT, including ethical hacking and vulnerability assessments. This role requires strong communication skills and proficiency with penetration testing tools, ensuring the firm maintains high security standards.
Qualifications
- 3+ years of IT experience.
- 1+ years of hands-on web application penetration testing / ethical hacking experience.
Responsibilities
- Lead testing efforts on web and mobile applications.
- Replicate techniques and tools used by attackers.
- Prepare reports and present results to stakeholders.
- Analyse test results and develop exploit examples.
- Consult with teams to address weaknesses.
- Contribute to the development of vulnerability discovery tools.
- Identify threats to improve security.
Skills
Manual testing experience including OWASP
Knowledge of application security mechanisms
Recognizing application security vulnerabilities
Experience with penetration testing tools
Knowledge of programming languages
Experience with web services technologies
Experience with web application frameworks
Analytical and problem-solving skills
Excellent interpersonal skills
Communication and presentation skills
Ability to produce high-level reports
Education
Bachelors degree / Diploma or equivalent experience
Tools
Nmap
Wireshark
Nessus
Kali
Metasploit
AppScan
WebInspect
Burp Suite Professional
Acunetix
Arachni
w3af
NTOSpider
Job description
Qualifications
- Bachelors degree / Diploma or equivalent experience
- 3+ years of IT experience
- 1+ years of hands‑on web application penetration testing / ethical hacking experience
The Purpose of Your Role
- Lead testing efforts on web and mobile applications and supporting systems.
- Replicate the actual techniques and tools used by malicious attackers in an effort to model potential external threats.
- Upon completion of the assessment, you will prepare reports and present the results to application owners, developers, and business unit information security teams.
- Analyse test results, draw conclusions from results, and develop targeted exploit examples.
- Consult with operations and software‑development teams to ensure potential weaknesses are addressed.
- Contribute to the research or development of tools to assist in the vulnerability discovery process.
- Identify threats to improve the overall security of applications and infrastructure.
- Recommend solutions to help mitigate risks and protect the entire network i.e., architect security solution.
Skills
- Ability to demonstrate manual testing experience including all of OWASP.
- Working knowledge of application security mechanisms such as authentication and authorization techniques, data validation, and the proper use of encryption.
- Technical knowledge of, and the ability to recognize, various types of application security vulnerabilities.
- Demonstrated experience with common penetration testing and vulnerability assessment tools such as nmap, Wireshark, Nessus, NeXpose, Kali, Metasploit, AppScan, WebInspect, Burp Suite Professional, Acunetix, Arachni, w3af, NTOSpider.
- Knowledge of a programming or scripting language such as C, C#, Python, Objective C, Java, Javascript, SQL.
- Knowledge of web services technologies such as XML, JSON, SOAP, REST, and AJAX.
- Knowledge of web frameworks, including XML, SOAP, J2EE, JSON and Ajax.
- Experience with enterprise Java or .NET web application frameworks, including Struts and Spring.
- Proven analytical and problem‑solving skills, as well as the desire to assist others in solving issues.
- Excellent interpersonal skills with a strong interest in the application security domain.
- Excellent communication and presentation skills and a proven ability to communicate threats and facilitate progress towards long‑term remediation.
- Highly motivated with the willingness to take ownership/responsibility for their work and the ability to work alone or as part of a team.
- Ability to produce high‑level reports.
Preferred Skills and Competencies
- A+, N+, S+, CCNA
- Vulnerability Scanning
- Vulnerability Assessment
- Valid Certified Ethical Hacker Certificate
- Certified Penetration Testing Professional / OR CISA / CISM / SISSP AND CISSP certification.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Michael Carter
I was stuck sending out resumes with no response until I used JobLeads. They made my resume impossible for recruiters to ignore.
Sophie Reynolds
JobLeads' resume review helped me fix critical mistakes, and I started getting interviews almost immediately!
Daniel Fischer
With JobLeads' resume review, my resume went from overlooked to interview-ready in no time!