A professional at this position level must have the following responsibilities:

• To conduct ad-hoc/periodic vulnerability assessment (VA) and Penetration Testing (PT) on servers, web applications, databases, network and IoT
• To perform testing and simulating real world attacks via Red Team exercises using tactics, techniques, and procedures (TTPs)
• Identify areas where the vulnerability protection, attack detection and response can be improved in the event of real attack
• To perform source code and design review of applications running on various platform (web applications, web services, mobile applications, thick client applications, etc.)
• To prepare technical detailed reports of findings, analysis, risk ratings and recommendations
• To conduct briefings and presentations to all level of audience like technical and non-technical parties, and executive management

Basic Qualifications:

• Bachelor’s degree in IT, Computer Science, Telecommunication or related field
• Minimum 3 years working experiences Cyber Security related job
• Experience in using vulnerability assessment tools such as Tenable, Nessus, Accunetix, etc. Knowledge in analyzing CVEs and CVSS score
• Skilled in preparing required documentation and presentation materials to stakeholders
• Fluent in English and Bahasa Malaysia

Advantages:

• Certification in relevant cyber security technologies or well-known cyber security institutes such as SANS, ISACA, etc

Professional Skill Requirements:

• Strong communication skills with the ability to communicate to all levels of the business
• Experience with direct communication and cooperation on-site client
• Team player attitude