SeniorExpert Penetration Engineer
SeniorExpert Penetration Engineer
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Not Disclosed
Salary Not Disclosed
1 Vacancy
Job Description
Work SetUp: OnSite
Work Location: Pasay
Working Days: 6 Days
Work Schedule: MorningMid Shift 8 am12nn start)
Job Description
- Use security tools to scan websites/api/servers for vulnerabilities and manually confirm vulnerabilities that cannot be reproduced with tools.
- Analyze the exploited vulnerabilities and give suggestions for repairing them
- Emergency response to web security incidents and recurring attack routines.
Qualifications
- Proficiency in at least 2 programming languages.
- Have their own set of tools and methods for early information collection.
- Proficiency in using burpsuite nmap sqlmap and other tools to scan and exploit vulnerabilities.
- Familiar with the HTTP protocol familiar with the HTTP header part and able to say its meaning. Familiar with the DNS protocol and proficient in using tools to analyze the DNS resolution process.
- Familiar with common web vulnerabilities such as SQL injection XSS attack command injection CSRF attack upload vulnerability parsing vulnerability etc.
- It is better to be familiar with popular suites or frameworks commonly used in frontend development. Such as webpack vue.js react.js ant gulp etc.
- Those with web full stack development experience or DevOps experience can be interviewed for extra points.
- Bonus points for interviews with static reverse engineering dynamic debugging and an indepth understanding of PE structure.
- Bonus points for deep experience in Windows domain penetration.
Employment Type
Full Time
