Senior Specialist Penetration and Appsec Testing

Senior Specialist Penetration and Appsec Testing

The offer has expired.

Join ABB and work in a team that is dedicated to creating a future where innovative digital technologies allow greater access to cleaner energy. If you are looking for big, global challenges, Information Systems (IS) is the place to come. ABB's portfolio includes some of the most advanced power and productivity products and systems in the world. If you have the energy, discipline and intellectual firepower to succeed, you will find almost limitless opportunities to stretch your thinking, expand your horizons and build your skills as you work with people all over the world. The Cyber Security Red Team / Penetration Tester is tasked with identifying and testing advanced cyber security threats targeting the organization. He or she will ensure services are delivered in accordance with agreed business requirements and provide the Service Manager with an overview of ABB’s risk exposure from internal and external threats. He or she interacts with other security departments with regards to assessing the risk deriving from the findings along with potential mitigations.

Tasks:

• Manage external penetration testers conducting testing engagements on ABB assets.
• Manage engagements from kickoff through remediation, and mentoring internal to the team.
• Perform network penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessments, and social-engineering assessments.
• Recognize and safely utilize attacker tools, tactics, and procedures.
• Develop scripts, tools, or methodologies to enhance red teaming processes.
• Validate all findings in scope from Red Team scans.
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences using the InfoSec reporting tools.
• Effectively communicate findings and strategy to client stakeholders.
• Participate in discussions with asset owners or designated technical contacts to analyze and explain results of assessments and tests as well as determine remediation steps/time needed.
• Assist Service Manager to establish and maintain the vision & process framework for managing Security Resilience Red Team service.
• Report the security status in terms of the services to the SM so that he/she can report to relevant bodies, especially InfoSec Management, InfoSec Strategy, Governance and Policies, Business Engagement, and Risk Assessors.

Requirements:

• Bachelor’s Degree or equivalent level with IT focus or equivalent practical experience.
• 4 years of experience in Information Security
• 4 years experience performing network penetration testing performing application security assessments, Cyber Red Team, performing network exploitation operations.
• Experience in Network penetration testing and manipulation of network infrastructure, Mobile and/or web application assessments, Shell scripting or automation of simple tasks using Perl, Python, or Ruby, Developing, extending, or modifying exploits, shellcode or exploit tools, Developing applications in C#, ASP, .NET, or other languages.
• Strong knowledge of tools used for wireless, web application, and network security testing.
• Industry certifications preferred (e.g. GPEN, GWAPT, OSCP, OSWE, eWPTX, etc.)
• Excellent English language skills (spoken and written).
• Knowledge of networking fundamentals (all OSI layers).
• Familiarity with interpreting log output from networking devices, operating systems and infrastructure services.
• Familiarity with common reconnaissance, exploitation, and post exploitation frameworks.
• Must have the ability to perform targeted penetration tests without use of automated tools preferred.
• Well versed in multiple security technologies such as Firewalls, IDS/IPS, Web Proxies and DLP amongst others preferred

Additional information

Please visit the company website for additional information.

Location:
Bangalore, Karnataka, India
Contract type:
Regular/Permanent
Business unit:
IS Service Delivery
Date posted:
2019-05-16
Job function:
Information Technology
Publication ID:
IN69043390_E1

ABB (ABBN: SIX Swiss Ex) is a pioneering technology leader with a comprehensive offering for digital industries. With a history of innovation spanning more than 130 years, ABB is today a leader in digital industries with four customer-focused, globally leading businesses: Electrification, Industrial Automation, Motion, and Robotics & Discrete Automation, supported by its common ABB Ability™ digital platform. ABB’s market leading Power Grids business will be divested to Hitachi in 2020. ABB operates in more than 100 countries with about 147,000 employees. www.abb.com

Share this job ad.

Know someone who might be interested in this job? Email this posting directly and encourage people to make a better world with us.






Related jobs