Senior Penetration Tester
Multisys Technologies Corporation
- Parañaque, Philippines#14, Mt. of Olives St, Moonwalk, Parañaque, Metro Manila, PhilippinesParañaqueMetro ManilaPhilippinesPhilippines
- Toàn thời gianFULL_TIME
Miêu Tả Về Công Việc
Job Summary
A Sr. Penetration Tester manages and leads a technical team responsible for conducting internal and external Vulnerability Assessment and Penetration Testing activity. He/she oversees the continuous security assessments and schedule scanning activities. Additionally, he/she is responsible in Vulnerability Management and Mitigation (VMM), which focuses on vulnerability identification, prioritization and reporting across both on-premises and cloud-based system, infrastructure and network devices spanning both Multisys technologies enterprise and service provider network.
General
- Reports directly to the Vice President (VP) and Chief Information Security Officer (CISO);
- Performs continuous scanning for Multisys systems, infrastructure, and network to identify vulnerabilities;
- Manages and schedules all Multisys IT systems and infrastructure for Vulnerability Scanning;
- Acts as a subject matter expert in vulnerability management and penetration testing (VAPT);
- Ensures all systems comply with Multisys Security Standards;
- Directs cross-functional, cross-department teams in remediating security vulnerabilities, ensuring regular communication of status and work products to mitigate intended vulnerabilities;
- Leads large-scale information security projects, including the implementation and delivery of new infrastructure security scanning capabilities;
- Mentors and coaches’ direct reports to ensure success in their roles;
- Partners with teams to align technology implementation processes and reduce vulnerabilities;
- Manages and engages 3rd party service providers for VAPT projects.
- Stays updated with industry-leading vulnerability and software security vendors, informing product roadmaps;
- Supports the continuous improvement of the vulnerability management program initiatives, process, and technology integration;
- Assesses, documents, and validates vulnerability management practices across the business to ensure compliance with company policies and standards;
- Prepares and presents daily, weekly, monthly, quarterly, and annual reports, as required by the Immediate Superior;
- Assists and participates in human resources and other company activities; and
- Performs other related tasks as assigned.
Vulnerability Management and Mitigation
- Develops and implements effective vulnerability management processes and procedures;
- Identifies, prioritizes, and reports vulnerabilities across on-premises and cloud-based systems, infrastructure, and network devices;
- Collaborates with relevant stakeholders to address identified vulnerabilities and ensure timely remediation; and
- Stays informed about the latest industry trends, best practices, and tools related to vulnerability management.
Penetration Testing:
- Conducts comprehensive penetration testing activities to identify potential vulnerabilities and exploit them within ethical boundaries;
- Analyzes and reports findings from penetration testing assessments, including recommended remediation actions;
- Collaborates with IT teams to implement necessary security measures and safeguards based on identified vulnerabilities; and
- Stays up to date with emerging threats and techniques related to penetration testing.
Trình độ tối thiểu
Qualifications:
- Bachelor's degree in Information Technology, Computer Science, or related field (Master's degree is optional)
- With at least 8 years of experience in a vulnerability management, including assessment, prioritization, and driving remediation efforts.
- Hands-on experience with vulnerability management tools.
- Strong technical understanding and experience assessing vulnerabilities and identifying weaknesses across multiple operating system platforms, databases, and application servers.
- Strong communication skills, both written and verbal, enabling effective collaboration across various business units and the ability to communicate technical gaps as business risks at executive level.
- High-performance skillset that encompasses both a deep understanding of threat spaces and the ability to effectively communicate risks to teams.
- Strong leadership skills that inspire and bring out the best in the team, including cross-functional capabilities.
- Experience in interacting with auditors and regulators.
- Familiarity with PCI Data Security Standard (PCI DSS).
- Certifications such as CEH, OSCP, GuideM (EH|VAPT), and Security (optional) are considered a plus.
Đặc quyền và lợi ích
- Special Leave Benefits for Women
- Free Lunch or Snacks
- Medical / Health Insurance
- Paid Sick Leave
- Single Parent Leave
- Paid Bereavement/Family Leave
- Paid Holidays
- Paid Vacation Leave
- Maternity & Paternity Leave
Khác
- Calamity Leave
- Clinic
- Court
- Game Room
- Garden
- Mental Health Benefit
- Music Studio
- Salon
- Spacious Free Parking
- Tree house
Kỹ năng cần thiết
- Incident Management
- Information security
Bằng cấp và Giấy chứng nhận
- Security+
- Certified Ethical Hacker
Khóa học ưa thích
- Information Technology
- Computer Science
Tóm tắt công việc
- Trình Độ Công Việc
- Phó Giám Sát/Giám Sát
- Ngành Nghề
- IT and Software
- Yêu cầu học vấn
- Tốt nghiệp Cử nhân
- Nhà tuyển dụng trả lời hồ sơ
- Always
- Địa chỉ văn phòng
- Mt. of Olives St, Moonwalk
- Ngành nghề
- Information Technology / IT
- Vị trí đang tuyển
- 1 vị trí tuyển dụng mới
- Trang web
- https://www.multisyscorp.com/
Về Multisys Technologies Corporation
Multisys Technologies Corporation is considered one of the leading software solutions company in the Philippines that provides a wide range of cost-effective, full-scale software services, system platforms, and integrations being used by thousands of companies and organizations.
Empowering Your Business
A leading software company in the Philippines, Multisys has been steadfast in seeking greater digital transformation for the country, through systems design, development (programming), and deployment (implementation).
Who We Are
We are a software solutions company backed by a team of full-stack developers and elite programmers.
What We Do
Multisys empowers businesses and is a partner to everyone. The wide breadth of copyrighted platforms and solutions that we openly offer underscores our relentless commitment to helping private companies operate more efficiently and grow, as well as to assist government agencies for faster and more effective delivery of services to the public.
How We Help
We put our heart and core on system automation and integration services that expedite various processes and transactions—ultimately helping reinforce the ease of doing business across the Philippines archipelago.
Corporate Principle
We pursue and bring solutions beyond software development to create impactful advancement to empower businesses.
Our Mission
Our mission is to build a sustainable and future-ready society by providing smart solutions to empower businesses and partners to expedite and streamline their processes.
Our Vision
Our vision is to revolutionize ways of life towards greater digital transformation through innovative software solutions.
Our Culture
We Work to Play and Play to Win
We maintain a casual work environment to inspire our people and help them achieve more.