Red Team Analyst (Penetration Tester, 37924-1)

Posted 03 June 2022
LocationBudapest
Job Type Temporary/Contract
DisciplineIT / Telecom
ReferenceBBBH531855_1654248805

Job description


We are looking for experienced candidates for our multinational partner in Budapest:

Red Team Analyst (Penetration Tester / IT Security Specialist)

Tasks:

  • Create extremely high-quality written reports containing the findings from web and infrastructure vulnerability assessments, as well as the ability to articulate those findings to peer technical staff as well as various levels of management
  • Perform manual vulnerability assessments without the use of automated tools such as vulnerability assessment scanners.
  • Capture and analyze network traffic at all seven layers of the OSI model, including ability to discern whether said network traffic contains vulnerabilities and/or sensitive data

Requirements:

  • Min. 6 years of experience penetration/vulnerability testing for web and thick-client applications in an enterprise environment
  • Minimum 6 years of experience with enterprise-level security control implementations, including Network Intrusion Detection/Prevention (NIDS/NIPS), Corporate Antivirus, Enterprise Web Filtering, Data Loss Prevention, Insider-threat Mitigation, Botnet Detection, etc., as well as demonstrable knowledge of the principles and techniques used to bypass said controls
  • Strong understanding of web technologies, e.g. HTTP, HTML, CSS, Forms, Database Connectivity, etc.
  • Understanding of compliance and regulatory requirements such as PCI DSS, SOX, HIPAA, etc.
  • Full grasp and ability to articulate and/or train others on the "OWASP Top 10" and related concepts
  • Minimum 6 years of experience with programming and/or scripting in one or more of the following languages: .NET, Java, PHP, Ruby, Perl, Bash, or similar language
  • Minimum 6 years of experience with SQL, including a strong understanding of SQL syntax and the ability to perform basic management of MS SQL databases
  • Have a solid grasp of core security fundamentals and concepts, including knowing one's system, defence in depth, the principle of least privilege, access control, encryption and cryptography, security architecture and design, business continuity and disaster recovery, etc.
  • Fluent English and Hungarian verbal and written skills
  • Preference is for candidates with two or more of the following certifications: GSEC, GWAPT, CISSP, GPEN, GXPEN, CISA, CISM, OSCP and OSCE


Our Client's offer for you:

  • International work environment and team
  • Fair, competitive compensation; professional development opportunity
  • Modern, easily accessible office in Budapest, some home office opportunity



Please apply online after a short registration to our page.

A Kelly Services jelen helyzetben, mint munkaerő-közvetítő van jelen. Amennyiben jelentkezik, adatai a Kelly adatvédelmi szabályainak megfelelően kerülnek feldolgozásra. Kérjük, vegye figyelembe, hogy regisztrációjával hozzájárul az Adatvédelmi szabályzatban foglaltakhoz.

Cégünk támogatja az esélyegyenlőséget így jelentkezése elbírálásakor csak és kizárólag az Ön kvalifikációi számítanak, az elbírálás kimenetelét nem befolyásolja az Ön neme, vallása, világnézete, hovatartozása, kora, szexuális beállítottsága, valamint nem tekintjük hátránynak, ha Ön megváltozott munkaképességű, mivel lehetőségeink szerint próbálunk ezen a területen is állásokat biztosítani.

----------------------------------------------------------------------------------------------------------------------------------------

Kelly Services are acting as an Employment Agency in relation to this role. Should you choose to apply, your information will be processed in accordance with Kelly's Privacy Statement.

As an Equal Opportunities employer we welcome applications from all suitably qualified persons regardless of their race, sex, disability, religion/belief, sexual orientation or age.