Description de l'annonce:

POSITION SUMMARY

Kan Digital Company is looking for a Freelance  Pen Tester/Red Team Analyst to work  with our Cyber security  team. This role is responsible for conducting vulnerability assessments, threat modeling, penetration tests, and red team campaigns in according with CyberSecurity Team

RESPONSIBILITIES:

Support / execute penetration tests and/or red team operations against  web applications, APIs, networks, Windows and *nix variants

Effectively communicate findings, attack paths, and recommendations to technical, non-technical, and executive client stakeholders through written reports and verbal presentations

Effectively communicate successes and obstacles with fellow team members, team leads, and management

Assist with scoping engagements, participating in technical testing from campaign start through remediation, and mentoring less experienced staff.

Work with enterprise defenders to educate and train in adversary TTPs

QUALIFICATIONS:

Bachelor’s degree or equivalent plus 4+ years’ pen testing experience

One or more professional certifications such as OSCP, OSCE, GWAPT, GSEC, GPEN, GXPN

Passionate about security and finding new ways to break into systems as well as defend them

Offensive information security testing (red teaming, penetration testing, blue teaming) experience

Knowledge of Windows and *nix-based operating systems

Knowledge of networking , inter connection protocol  and fundamentals and common attacks

Basic exploit development and validation skills

Understanding of core Internet protocols (e.g. DNS, HTTP, TCP, UDP, TLS, IPsec)

Understanding of encryption fundamentals (symmetric/asymmetric, ECB/CBC operations, AES, etc.)

Strong oral and written communication skills, including a demonstrated ability to prepare documentation and presentations for technical and non-technical audiences

Good in English.