Overview

Vulnerability Assessment & Penetration Tester Job in Riyadh, Saudi Arabia at Zcomme

Job Description

Capgemini Riyadh is seeking a Security Penetration Tester to join our dynamic Security Testing team and perform security testing of applications, networks, and infrastructures, including vulnerability assessments, penetration testing, and manual testing techniques.

Role Objective: Penetration Testing Expert is an IT professional specialized in vulnerability assessment and penetration testing program and responsible for the design and performance of application security robustness tests. The candidate should be a highly motivated, detail-oriented, and customer-focused problem solver.

About Capgemini

Capgemini is a global leader in consulting, digital transformation, technology and engineering services. The Group is at the forefront of innovation to address the entire breadth of clients’ opportunities in the evolving world of cloud, digital and platforms. Building on its strong 50-year+ heritage and deep industry-specific expertise, Capgemini enables organizations to realize their business ambitions through an array of services from strategy to operations. Capgemini is driven by the conviction that the business value of technology comes from and through people. Today, it is a multicultural company of 270,000 team members in almost 50 countries. With Altran, the Group reported 2019 combined revenues of €17billion.

Skills

Job Title – Security Expert on PT

Skill Name – Vulnerability Assessment & Pen testing (VAPT)

Niche Skill – Experience on Vulnerability Assessment and Penetration Testing for Infrastructure, Networks, Web Application, Web Services, Databases, Mobile, etc

Experience – 2 year – 4 years

Primary Skills (Must Have)

  • Experience in analysis of false positive, risk remediation recommendation and draft report preparation.
  • Knowledge on open source and commercial tools for e.g Metasploit framework, Nessus, Acunetix, Appscan, nmap etc.
  • Experience on network, web application/ web services penetration testing & secure code review of applications
  • Experience Mobile application testing.
  • Security configuration review of database /servers / firewalls / switches / routers, etc
  • Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
  • Wireless penetration testing & application security review

Secondary Skills (Good to Have)

  • Security Products Knowledge
  • Good Knowledge on Secure Code Review of applications is desirable.
  • Demonstration of Proof of concepts for exploits
  • Wireless Penetration Testing & Application Security Review
  • Security Configuration Review of Database / Servers / Firewalls / Switches / Routers

Personal Qualities

  • Ability to work in a high pressure environment, reporting to senior stakeholders.
  • Ability to review technical designs and to articulate security requirements clearly.
  • Ability to both accept criticism, and make productive use of it.
  • Flexible, motivated and a team player.
  • Excellent verbal and written communication skills to a suitably professional standard that would be appropriate in a court of law.

Key Responsibilities

  • Perform periodically system and application VAPT (Vulnerability Assessment and Penetration Testing) using automated and manual approach.
  • Perform Web Application Vulnerability Assessment & Penetration Testing.
  • Perform Mobile application security testing.
  • To carry out secure code reviews and to find out critical security flaws in the code
  • Conduct vulnerability assessments of applications using various open source and commercial tools
  • Conduct penetration test and launch exploits using Burpsuite, Nessus, Metaspoilt, Backtrack penetration testing distribution tools sets
  • To carry out advanced technical analysis on intrusions
  • Analyze scan reports and suggest remediation / mitigation plan
  • Providing rich client specific reports
  • Technically assist team in resolving installation, setup issues, etc of VAPT tools and infrastructure
  • Experience on network, web application/ web services penetration testing and secure code review of applications
  • Demonstration of proof of concepts for exploits, manual penetration testing
  • Wireless and Mobile penetration testing and application security review
  • Knowledge on open source and commercial security assessment tools e.g. Burpsuit, Nessus, Appscan, nmap etc.
  • Security configuration review of database /servers / firewalls / switches / routers, etc
  • Experience on network, web application/ web services penetration testing and secure code review of applications
  • Demonstration of proof of concepts for exploits, manual penetration testing
  • Knowledge of operating systems preferably windows, linux etc. network equipment’s system & network hardening
  • Research and maintain proficiency in computer application exploitation, tools, techniques, countermeasures, and trends in computer application vulnerabilities

Shift Timing – 9X5, Rotational Shifts

Job Location – Riyadh

Job Details

Job Location
Riyadh, Saudi Arabia

Company Industry
IT Services

Company Type
Recruitment Agency

Job Role
Information Technology

Employment Type
Unspecified

Monthly Salary Range
Unspecified

Number of Vacancies
Unspecified

Preferred Candidate

Career Level
Mid Career

Years of Experience
Min: 2 Max: 4

About Company

Company: Zcomme

Company Location:  Riyadh, Saudi Arabia

Job Category: IT Services

About Zcomme