Sanofi tuyển dụng Penetration Tester (OWASPTop 10, C#, PHP, Python)
SANOFI VIỆT NAM
Địa điểm làm việc: Hồ Chí Minh
Hết hạn: 30/03/2024
- Chi tiết công việc
- Giới thiệu công ty
Vị trí công việc này hiện tại đã hết hạn nộp hồ sơ, bạn có thể tham khảo thêm một số công việc tương tự tại đây:
Mô tả công việc
The position is based in Ho Chi Minh City. The role will report to the IT Governance & Security Manager, and handle the following responsibilities:
1.Own and conduct end-to-end penetration testing for the Company's systems:
Perform security testing of web/mobile applications, networks, and operating systems.
Conduct attack exploitation using manual penetration testing (MPT) and automatic tools according to the security test plan and checklist.
Create a security report and provide applicable recommendations based on the test performed.
Provide summary reports that will help the board of management team understand the company's security posture.
2.Join the Incident Response Team:
Collaborate with other IT teams and user departments to handle information security incidents, analyze application logs, security logs, trace root causes, detect actors, propose solutions to prevent attacks, and develop best practices to enhance security systems.
3.Participate in the projects:
External partners for independent security assessment: propose the scope of services; understand and verify the findings in penetration testing projects; etc.
Security solutions implementation or enhancement projects: analyze and develop security protection requirements; evaluate the proposal; validate the deliveries; etc.
4.Self-development:
Research and self-improve on new attack exploitation methods and appropriate security standards.
Perform other tasks as required by the manager.
5.Other tasks assigned by superiors
1.Own and conduct end-to-end penetration testing for the Company's systems:
Perform security testing of web/mobile applications, networks, and operating systems.
Conduct attack exploitation using manual penetration testing (MPT) and automatic tools according to the security test plan and checklist.
Create a security report and provide applicable recommendations based on the test performed.
Provide summary reports that will help the board of management team understand the company's security posture.
2.Join the Incident Response Team:
Collaborate with other IT teams and user departments to handle information security incidents, analyze application logs, security logs, trace root causes, detect actors, propose solutions to prevent attacks, and develop best practices to enhance security systems.
3.Participate in the projects:
External partners for independent security assessment: propose the scope of services; understand and verify the findings in penetration testing projects; etc.
Security solutions implementation or enhancement projects: analyze and develop security protection requirements; evaluate the proposal; validate the deliveries; etc.
4.Self-development:
Research and self-improve on new attack exploitation methods and appropriate security standards.
Perform other tasks as required by the manager.
5.Other tasks assigned by superiors
Yêu cầu
Graduated from a university or higher education, major in computer science.
Have 3 years of experience in testing OWASPTop 10, web applications, mobile applications, APIs, network penetration testing, and performing as a red team member.
In-depth knowledge of penetration testing tools and common vulnerabilities.
Ability to read and analyze system, database, and application logs.
Ability to present the security penetration testing report (in English and Vietnamese) and explain it to the technical team, while ensuring that the summary section is understandable by the business management team.
Honesty, meticulous, careful, enthusiastic and high sense of responsibility at work.
While Vietnamese communication skills are essential, this position also requires good English communication skills (both written and spoken) in the workplace.
The candidate possessing any or some of the following expertise is a plus:
Experience in a cyber incident response team.
Proficiency in web application programming languages (C#, PHP, Python).
Experience in source code review. d) Proficiency in programming scripts to perform security testing.
International security certificates such as CEH, OSCP, etc.
Practice in HackTheBox lab environment, Portswigger, or participation in CTF programs, bug bounty, etc
Have 3 years of experience in testing OWASPTop 10, web applications, mobile applications, APIs, network penetration testing, and performing as a red team member.
In-depth knowledge of penetration testing tools and common vulnerabilities.
Ability to read and analyze system, database, and application logs.
Ability to present the security penetration testing report (in English and Vietnamese) and explain it to the technical team, while ensuring that the summary section is understandable by the business management team.
Honesty, meticulous, careful, enthusiastic and high sense of responsibility at work.
While Vietnamese communication skills are essential, this position also requires good English communication skills (both written and spoken) in the workplace.
The candidate possessing any or some of the following expertise is a plus:
Experience in a cyber incident response team.
Proficiency in web application programming languages (C#, PHP, Python).
Experience in source code review. d) Proficiency in programming scripts to perform security testing.
International security certificates such as CEH, OSCP, etc.
Practice in HackTheBox lab environment, Portswigger, or participation in CTF programs, bug bounty, etc
Quyền lợi
13th month salary.
Holidays and full annual leave in accordance with State regulations.
Participate in all insurances (social insurance, health insurance, unemployment insurance), enjoy full policies and regimes according to the Labor Law.
Dynamic and humane working environment Annual trip.
Holidays and full annual leave in accordance with State regulations.
Participate in all insurances (social insurance, health insurance, unemployment insurance), enjoy full policies and regimes according to the Labor Law.
Dynamic and humane working environment Annual trip.
Thông tin chung
- Ngày hết hạn: 30/03/2024
- Thu nhập: Thỏa thuận
Giới thiệu công ty
Xem trang công ty
Giới thiệu Công ty Cổ phần Sanofi Việt Nam
Có trụ sở làm việc tại quận Thủ Đức, TP.HCM, hoạt động chủ yếu là sản xuất thuốc, hóa dược và dược liệu. Công ty Cổ phần Sanofi Việt Nam có tên quốc tế là SANOFI VIETNAM SHAREHOLDING COMPANY.Thông tin đăng ký kinh doanh Công ty Cổ phần Sanofi Việt Nam
Ngành nghề hoạt động Công ty Sanofi Việt Nam
Sản phẩm
Thuốc Calcium Corbiere, Plavix, Lactacyd, Taxotere, Enterogermina, Amaryl, Acemuc.Dịch vụ
Sản xuất thuốc, hóa dược và dược liệu.Thông tin liên hệ
Địa chỉ:- Nhà máy Quận 9: Lô I-8-2, Đường D8, Quận 9.
- Nhà máy Thủ Đức: 15/6C, Đặng Văn Bi, Q. Thủ Đức.
Một số vị trí Công ty Sanofi Việt Nam tuyển dụng
Nhân viên sản xuất thời vụ, nhân viên kho, nhân viên kinh doanh.
Quy mô công ty
Từ 5000 - 10000 nhân viên
Việc làm tương tự
Công ty TNHH INFOdation VN
You'll love it
30/10/2024
Hồ Chí Minh, Khánh Hòa
Công ty Cổ phần Viễn thông FPT - FPT Telecom
15,000,000 - 40,000,000 VND
31/10/2024
Hồ Chí Minh
hỗ trợ doanh nghiệp
Giải thưởng
của chúng tôi
Top 3
Nền tảng số tiêu biểu của Bộ
TT&TT 2022.
Top 15
Startup Việt xuất sắc 2019 do VNExpress tổ chức.
Top 10
Doanh nghiệp khởi nghiệp sáng tạo Việt Nam - Hội đồng tư vấn kinh doanh ASEAN bình chọn.
Giải Đồng
Sản phẩm công nghệ số Make In Viet Nam 2023.