Entreprise:
Description de l'annonce:
POSITION SUMMARY
Kan Digital Company is looking for a Freelance Pen Tester/Red Team Analyst to work with our Cyber security team. This role is responsible for conducting vulnerability assessments, threat modeling, penetration tests, and red team campaigns in according with CyberSecurity Team
RESPONSIBILITIES:
Support / execute penetration tests and/or red team operations against web applications, APIs, networks, Windows and *nix variants
Effectively communicate findings, attack paths, and recommendations to technical, non-technical, and executive client stakeholders through written reports and verbal presentations
Effectively communicate successes and obstacles with fellow team members, team leads, and management
Assist with scoping engagements, participating in technical testing from campaign start through remediation, and mentoring less experienced staff.
Work with enterprise defenders to educate and train in adversary TTPs
QUALIFICATIONS:
Bachelor’s degree or equivalent plus 4+ years’ pen testing experience
One or more professional certifications such as OSCP, OSCE, GWAPT, GSEC, GPEN, GXPN
Passionate about security and finding new ways to break into systems as well as defend them
Offensive information security testing (red teaming, penetration testing, blue teaming) experience
Knowledge of Windows and *nix-based operating systems
Knowledge of networking , inter connection protocol and fundamentals and common attacks
Basic exploit development and validation skills
Understanding of core Internet protocols (e.g. DNS, HTTP, TCP, UDP, TLS, IPsec)
Understanding of encryption fundamentals (symmetric/asymmetric, ECB/CBC operations, AES, etc.)
Strong oral and written communication skills, including a demonstrated ability to prepare documentation and presentations for technical and non-technical audiences
Good in English.