OK to Continue
Yes No Thanks
OK to Continue
Job Seeker Reactivate Your Account
Thank you, this account has been Deactivated.
Do you want to Reactivate your account?
No
Yes

Senior Penetration Tester

(Software Tester)

WING BANK (CAMBODIA ) PLC
Boeng Keng Kang | Phnom Penh
  1 帖子
Verified This job has been verified by the company as a real job vacancy. 1 周前
招聘人员活跃1 天 前 The recruiter at this company was last active reviewing applications.
Phnom Penh
Verified
招聘人员活跃1 天 前 The recruiter at this company was last active reviewing applications.
在此申请
公司简介 该公司的职位 138
Sorry, Unable to Apply
x
55%
Please Upload CV Attachment, or update your JobNet Profile to at least 55% of completion.
Upload CV
Update Profile

Senior Penetration Tester

WING BANK (CAMBODIA ) PLC
Phnom Penh
在此申请

Senior Penetration Tester

(Software Tester)

WING BANK (CAMBODIA ) PLC
招聘人员活跃1 天 前 The recruiter at this company was last active reviewing applications.
Cambodia - Phnom Penh
Verified This job has been verified by the company as a real job vacancy.
Boeng Keng Kang | Phnom Penh
  1 帖子
1 周前
Verified This job has been verified by the company as a real job vacancy.
招聘人员活跃1 天 前 The recruiter at this company was last active reviewing applications.
在此申请

经验水平

Experienced Non-Manager

工作职能

IT Hardware, Software

就业行业

Banking/ Insurance/ Microfinance

最低教育水平

Bachelor Degree

工作类型

Full Time

职位描述

An Excellent Opportunity for ...

  • Work with relevant stakeholders to plan penetration testing and remediation.
  • Conduct periodic penetration test on web app, API, mobile apps, network devices and severs.
  • Maintain deep understanding of company’s security controls and critical assets.
  • Install, setup and implement hacking tools.
  • Build and develop hack, attack tools.
  • Build/Create attack (TTPs), attack flow.
  • Tunning or customize security testing tools.
  • Develop, build, and manage C2 servers.
  • Create malware and generate payload to hack and attack defense systems.
  • Scanning and exploit systems weakness, flaw, design, and configuration settings.
  • Test and attack security products or security solutions to ensure the controls effectiveness.
  • Test, execute and emulate specific threats or threat scenarios.
  • Crack and reverse engineering.
  • Find the way to stop/disable and bypass security controls.
  • Find the way to exfiltrate sensitive data from the networks.
  • Create hack/attack detail report and maintain documents.
  • Collaborate with defensive team to security controls.
  • Provide training to defensive team (blue team, SoC team).
  • Provide input on security architecture, features, design.
  • Stay informed on current security/threats trends, advisories, publications, and security research that is relevant to our organization.
  • Work and verifying the security of third-party vendors and collaborating with them to meet security requirements.
  • Verifying the security of third-party vendors and collaborating with them to meet security requirements.
  • Coordinate between internal and external firm Audit, BNC and other
  • Coordinate between internal and external Penetration Test firm
  • Coordinate between internal and external PCI-DSS or ISO standard firms to completed project.

打开

Male/Female

职位要求

  • Bachelor’s degree in information technology, preferably in Computer Science.
  • Security Certifications: Hold certifications such as PenTest+, CEH, OSCP, or equivalent.
  • Self-Learning: A strong emphasis on self-driven learning, including pursuing security-related courses or personal lab development, is a plus.
  • At least 3 years of hands-on experience in penetration testing, demonstrating a proven ability to carry out security assessments.
  • Familiarity with the MITRE ATT&CK framework for threat intelligence and adversary behavior modeling.
  • Knowledge of Common Software Weaknesses: Understanding of the Top 25 Most Dangerous Software Weaknesses.
  • Familiarity with Vulnerability Standards: Understanding of CVE, CWE, CPACE, and CVSS.
  • Penetration Testing Frameworks: Knowledge or experience with frameworks such as OSSTMM, ISSAF, PTES, and OWASP.
  • Programming Skills: Proficiency in languages such as PHP, Java, JavaScript, Shell Scripting, PowerShell, and Python.
  • Secure Development Frameworks: Experience or knowledge of secure software development practices.
  • Mobile Development: Experience in Android and iOS development and security testing.
  • Networking Fundamentals: Strong understanding of networking principles, including the OSI/TCP-IP model.
  • Penetration Testing & Vulnerability Scanning: Experience with penetration testing tools and vulnerability scanning techniques.
  • DevOps & DevSecOps: Familiarity with DevOps practices and integration of security into the software development lifecycle (DevSecOps).
  • Operating Systems: Proficient in working with Windows and Linux operating systems.
  • Virtualization & Cloud Solutions: Experience with virtualization, containers, and cloud-based solutions (e.g., AWS, Azure).

我们能提供什么

好处

Rewards for over performance

亮点

  • 优秀的公司
  • 加入团队
  • 您可以有所作为

工作机会

  • 机会晋升
  • 职业培训机会
  • 学习新技能和技巧
在此申请

申请此职位

OR
来自该雇主的更多职位

经验水平

Experienced Non-Manager

工作职能

IT Hardware, Software

就业行业

Banking/ Insurance/ Microfinance

最低教育水平

Bachelor Degree

工作类型

Full Time

更多类似职位

查看更多职位

Share with a Friend