Performing Hunting manual penetration test (blackbox/greybox)
Probe for vulnerabilities in web applications, mobile applications and Network.
Perform a variety of internal and external technical assessments), review tactics and processes to protect organizations from threats, interpret findings to determine if systems and processes can appropriately react to threats, identify security settings that may need to be “hardened” and recommend a multi-layered approach to prevent attacks, including proper defense, relationships, communication and training.
Continuous improvement of know how in the field of application security
Support development teams with consultations on the penetration testing findings
Cooperation and decision making across other penetration testing teams
متطلبات الوظيفة
BSC in Communication Engineering or computer science.
Web/Mobile/Network penetration testing related work experience 1:3 years.
Basic understanding of web-app architectures.
Basic understanding of software development concepts.
Experienced with security frameworks OWASP, SANS, MITRE, OSSTMM.
Basic understanding of PortSwigger BurpSuite or equivalent software.
Strong understanding of HTTP protocol, Oauth, SSO, JWT.
Strong understanding of REST, JSON, WebServices, SOAP, XML.
Basic understanding of JavaScript debugging.
Ability to clearly communicate and present technical topics.
Good analytical and problem-solving skills.
Good aptitude for learning new technologies.
Good written and verbal communication skills.
Result oriented, Self-motivated, and Highly collaborative.
SANS, (ISC)² and Ec-council certifications is a plus.
e-finance provides state of the art Electronic Payment Solutions and Business Integration & Optimization services to the government and financial sectors in a secure environment according to the international security standards.
e-finance is the First an