Ruolo

PENETRATION TESTER

Pubblicato il 17/03/2023

Information Technology

Information Technology & Digital

Roma, RM

Job Description:

Wyser è il brand globale che si occupa di ricerca e selezione di profili di middle e senior management di Gi Group Holding, la prima multinazionale italiana del lavoro e una tra le principali realtà che offrono servizi e consulenza HR a livello globale.


Per solida realtà finale, specializzata nello sviluppo di prodotti e soluzioni innovative nell'ambito della Cyber Security, stiamo cercando un/una:


For a solid final reality, specialized in the development of innovative products and solutions in the field of Cyber ????Security, we are looking for a:


Cyber Offensive Specialist \ Penetration Tester

The candidate will be part of excellent national/international activities. It is offered the possibility of following some of the most important Cyber Activity for the major companies in the Automotive, Industrial, Oil, Telco, Media, Products sectors and important national research projects.


Main Responsibilities:

-Executing Security Assessments on application/network/OT/embedded device to identifying vulnerabilities and exploiting them

-Conducting security research and devising new attack techniques against novel technologies

-Developing custom exploit to assist in compromising the target system

-Analyzing, disassembling, reverse engineering and exploiting a large number of heterogeneous systems

-Solving challenging technical problems and devising creative solutions

-Performing in-depth analysis of test results and creating reports that describes findings, exploitation procedures, risks and recommendations

-Participate in R&D activities to support and innovate Penetration Testing

-Carry out advanced security tests based on the same techniques, tactics and tools employed by the attackers (Red Team).


Technical Requirements:

Knowledge And Skills

-2+ years' experience

-Penetration testing (Network, Web, Mobile Application)

-Security Assessment (Embedded System, SCADA and ICS) (preferred but not required)

-Good ability to write technical documents

-Operating Systems (Linux, Unix, Windows, iOS, Android)

-Security principles, techniques and technologies (OWASP, NIST, MITRE ATT&CK)

-Identification, analysis and exploiting of vulnerabilities

-Vulnerabilities research and bug hunting experience (preferred but not required)

-Security tools and Standard security products (Nessus, Burp Suite, Acunetix WVS, Owasp ZAP, Wireshark, Metasploit, etc.)

-Mobile Application Reverse Engineering

-Exploit Development

-Experience with firmware extraction techniques, memory access attacks, firmware upgrade attacks, and using hardware debugging interfaces such as JTAG, UART, SPI, I2C, USB, and NAND flash chip reader (preferred but not required)

-Coding / Programming (e.g. Assembly, C, C#, C++, Java)

-Scripting languages (e.g. JavaScript, BASH, Python, PHP)

Education: Master Degree in Computer, Electronics, or Telecommunication Engineering. A strong academic background with specialization in cyber security is mandatory.


Location: Rome + smartworking

I candidati ambosessi (D.lgs. n. 198/2006), sono invitati a leggere l’informativa privacy ai sensi degli artt. 13 e 14 del Reg. EU 679/2016 al seguente indirizzo: https://it.wyser-search.com/privacy-policy/ Wyser (Aut. Min. del 15/04/2014 Prot. N: 39/4903)


#LI-PC

Settore industriale

Information Technology

Codice riferimento

85085

Consulente

Alessia Migliaccio, è il nostro consulente che gestisce questa opportunità di lavoro.

Scopri nuove opportunità grazie ai nostri approfondimenti e ai nostri suggerimenti di carriera.