Tìm kiếm theo:
Có phải bạn đang tìm
Từ khóa phổ biến
Việc làm nổi bật

Senior Associate - Cyber Security Consultant

CÔNG TY TNHH PWC (VIỆT NAM) - Tập Đoàn Kiểm Toán Đa Quốc Gia PwC

Địa điểm làm việc: Hồ Chí Minh
Hết hạn: 27/11/2024
Thu nhập: Thỏa thuận
Loại hình: Toàn thời gian
Chức vụ: Nhân viên
Kinh nghiệm: 3 năm

Mô tả công việc

We are PwC, a global professional services company and a Big Four firm. We are seeking candidates who have experience in penetration testing, red teaming or secure source-code review/development for the role of Senior Consultant/Penetration Tester within the Cybersecurity and Privacy team. The role may be based either at our Hanoi office or Ho Chi Minh City offices. Joining PwC, the successful candidate will have opportunities to collaborate with cybersecurity experts throughout the PwC global network and deliver cybersecurity services for clients in various sectors.
● Work in a highly innovative and transformative business
● Work/life balance with access to flexible work arrangements
● Salary packaging - to suit your personal and financial circumstances
● Professional certification sponsorship - to develop your talent and enhance knowledge
What will your typical day look like?
Do you thrive on developing creative and innovative insights to solve complex challenges? Want to work on next-generation, cutting-edge products and services that deliver outstanding value and that are global in vision and scope? Work with other experts in your field? Work for a world-class organisation that provides an exceptional career experience with an inclusive and collaborative culture?
Responsibilities:
- Lead the team in cybersecurity assessments, covering web application and mobile application penetration testing in accordance with OWASP Top 10 framework and CWE Top 25 most dangerous software weaknesses.
- Lead the team in network penetration tests and vulnerability assessments to identify potential issues against network access control and network segmentation.
- Conduct source code reviews to identify potential logical errors in program flows, misconfigurations, and exploitable vulnerabilities in the applications.
- Conduct red teaming engagement and cyber-attack simulation testing to assess clients' cybersecurity strategies
Research, collect and analyse cyber threat intelligence from threat actors.
- Engage in establishing network infrastructure for red teaming activities, including but not limited to command & control ("C2") servers, SMTP relay mail servers, web servers, and reverse proxies.
- Design and launch phishing attacks to generate reports for increasing awareness of employees regarding different types of phishing techniques.
- Provide pragmatic recommendations on the identified risks.
- Deliver both management-level and detailed technical reporting of observations, along with assisting in giving presentations to both technical and business stakeholders.
- Train, coach and mentor junior penetration testers.
- Lead day-to-day penetration testing delivery activities, including client and internal communication management, as well as technical quality control.
- Work actively in supporting and following up on proposal processing in accordance with client expectations on a cross-border and global multinational basis.
- Continuously research and follow up on the latest IT security challenges and technologies (mobile, digital trust, IoT, cloud, blockchain etc.)

Yêu cầu

- 3+ years of proven experience in conducting either network and infrastructure or web/API or mobile application penetration testing and be able to independently manage engagement delivery.
- Experience in leading and supervising engagement teams in penetration testing and vulnerability assessment projects
Thorough understanding of common infrastructure and web application vulnerabilities and common vulnerability categorisations such as OWASP and CVSS.
- Knowledge of common software security vulnerabilities (CWE Top 25 Most Dangerous Software Weaknesses).
- Experience in penetration testing and vulnerability assessment across one of the several following domains: web and mobile applications, cloud and container security, reverse engineering, applied cryptography, networks infrastructure, etc.
- Ability to work under pressure and deliver quality work in tight timelines.
- Demonstrated experience of working with diverse stakeholders.
- Excellent communication and interpersonal skills.
- Willingness to take on new challenges, gain new skills and work collaboratively in a dynamic and rapidly growing team
One of the following industry certifications: OSCP, OSWA, eWPT, eCPPT, CRTP, PNPT, CREST CRT/CCT, or equivalent.
Preferred:
- Experience in conducting red teaming engagements and cyber-attack simulation testing.
- Experience in developing hacking scripts/tools.
- Secure development and/or DevSecOps experience, including experience of securing code before deployment, code review, and vulnerability and dependency management.
- Ability to communicate strategic information security topics, policies, and standards as well as risk-related concepts to technical and non-technical audiences.
- Experience in bug bounty programs or CVE hunting is an advantage.
- Preference will be given to candidates who hold relevant cloud certifications: AWS, Azure, GCP.
- Strong preference will be given to candidates who hold one of the following industry certifications: OSWE, OSEP, OSCE, CRTO, CRTE, eCPTX, eWPTX, SANS.
- Strong preference will be given to candidates who hold one of the following professional certifications: CISSP, CCSP, CSSLP, CISM, CRISC, PMP

Quyền lợi

Bonus
13th month salary and bonus
Training
Professional training international environment
Laptop
Working Laptop

Thông tin khác

POSTED DATE
28/10/2024
JOB LEVEL
Experienced (non-manager)
JOB FUNCTION
Information Technology/Telecommunications > Security
SKILL
Information Security, Data Privacy, Cyber Security, Penetration Testing, SOC
JOB INDUSTRY
IT System & Devices
PREFERRED LANGUAGE
Any
YEAR OF EXPERIENCE
Not required
NATIONALITY
Not shown
View more

Thông tin chung

  • Thu nhập: Thỏa thuận

Cách thức ứng tuyển

Ứng viên nộp hồ sơ trực tuyến bằng cách bấm nút Ứng tuyển bên dưới:
Hạn nộp: 27/11/2024
Giới thiệu công ty Xem trang công ty
Công ty chưa cập nhật thông tin....
Quy mô công ty
Từ 501 - 1000 nhân viên
CÔNG TY TNHH PWC (VIỆT NAM) - Tập Đoàn Kiểm Toán Đa Quốc Gia PwC
Địa chỉ công ty: Số 29, Đường Lê Duẩn, Phường Bến Nghé, Quận 1, TP Hồ Chí Minh

Phúc lợi dành cho bạn

  • Thưởng
  • Nghỉ phép
HOT

Job hot

Công ty cổ phần MISA
Từ 15.000.000 VND đến 20.000.000 VND
Hà Nội, Hồ Chí Minh
Công Ty Cổ Phần Andes E&C Việt Nam
14.000.000 - 18.000.000 VND
Bắc Giang, Bắc Ninh, Hà Nam
Công Ty Cho Thuê Tài Chính TNHH BIDV - SuMi TRUST
Thỏa Thuận
Hà Nội
Công ty cổ phần MISA
Từ 25.000.000 VND đến 30.000.000 VND
Hà Nội, Hồ Chí Minh

Job liên quan

Apollo Solutions
Negotiable
Hồ Chí Minh
CÔNG TY TNHH FRIENDIFY AI
Tới 28 triệu
Hồ Chí Minh
CÔNG TY TNHH LIVE GROUP VIỆT NAM
0.0 - 0.0 triệu
Hồ Chí Minh
Công ty Cổ Phần King Food Market
Thỏa thuận
Hồ Chí Minh

Việc làm tương tự

Apollo Solutions
Negotiable
27/11/2024
Hồ Chí Minh
CÔNG TY TNHH FRIENDIFY AI
Tới 28 triệu
24/11/2024
Hồ Chí Minh
CÔNG TY TNHH LIVE GROUP VIỆT NAM
0.0 - 0.0 triệu
30/11/2024
Hồ Chí Minh
Công ty Cổ Phần King Food Market
Thỏa thuận
24/12/2024
Hồ Chí Minh
CTY TNHH TM KENGROUP
Thoả thuận
21/11/2024
Hồ Chí Minh
Công ty TNHH Alubend Việt Nam
Thỏa thuận
24/11/2024
Hồ Chí Minh
LacViet Computing Corporation
Thoả thuận
13/11/2024
Hồ Chí Minh
CÔNG TY CỔ PHẦN CÔNG NGHỆ DCORP
Thoả thuận
24/11/2024
Hồ Chí Minh
Công Ty TNHH Phát Triển Hệ Thống Nichietsu
20 - 45 triệu
27/12/2024
Hồ Chí Minh
Pascalia Asia Vietnam
Thỏa thuận
17/12/2024
Hồ Chí Minh

Giải thưởng
của chúng tôi

Top 3

Nền tảng số tiêu biểu của Bộ
TT&TT 2022.

Top 15

Startup Việt xuất sắc 2019 do VNExpress tổ chức.

Top 10

Doanh nghiệp khởi nghiệp sáng tạo Việt Nam - Hội đồng tư vấn kinh doanh ASEAN bình chọn.

Giải Đồng

Sản phẩm công nghệ số Make In Viet Nam 2023.