C

Penetration Tester

Centurion Information Security
Full-time
Remote
Hong Kong, Hong Kong and Singapore, Singapore

Brief Job Overview:


As a Penetration Tester, you will play a critical role in identifying and assessing vulnerabilities in our Clients' networks, systems, and applications. You will be responsible for conducting independent penetration testing and vulnerability assessments to proactively identify and exploit vulnerabilities in order to assess the security posture and resilience of our Clients' assets. You will work closely with our Clients to provide expert insights and recommendations for improving their security posture and mitigating risks.



General Responsibilities:


Penetration Testing


  • Communicate effectively and collaborate with clients to understand their business requirements to provide tailored scope of work (SOW).
  • Perform independent penetration testing, source code review, vulnerability assessments and other information security consulting services provided by the Company.
  • Develop detailed reports documenting findings and recommendations.


Service Delivery


  • Ensure that all your work meets high-quality standards, is delivered timely and reflects the highest level of technical excellence and capabilities in accordance with the Company's standards.
  • Aim to achieve and demonstrate the highest level of Client satisfaction and service delivery excellence in all aspects of your work.


Team Collaboration, Professional Conduct & Development


  • Act as a team player, providing assistance, sharing knowledge and experience, actively contributing to the success of the team.
  • Contribute to the development of the Company's internal methodologies, policies, processes, tools and techniques.
  • Provide technical guidance and mentoring to junior team members, as needed.
  • Maintain a good professional standing, act with integrity and ethics, and treat colleagues and Clients with respect.
  • Actively invest in professional development by staying updated with the latest industry trends, technologies and threat landscapes to continually enhance knowledge and technical skills.




      Experience / Skills for Role:


      • Qualification in Computer Science, Cyber Security, Information Technology or related field.
      • Experience in conducting penetration testing and vulnerability assessments in a professional setting.
      • Excellent communication skills, both written and verbal, with the ability to effectively communicate technical concepts to non-technical stakeholders.
      • Strong ethical mindset, maintaining confidentiality and integrity of client data and information.


      Desired Professional Qualifications / Skills:


      • CREST certifications, Offensive Security Certified Professional (OSCP) or related certifications
      • Knowledge and experience with PortSwigger Burp Suite Pro
      • Knowledge and experience in evaluating applications against OWASP ASVS and MASVS