Description
Roles and Responsibilities:
Perform application penetration testing on web-based applications, APIs
- Perform mobile application penetration testing across different mobile platforms
- Perform network penetration testing on systems.
- Exploit vulnerabilities to gain access and expand access to remote systems.
- Document and explain the technical details of the security issues identified during security assessments and recommend mitigation controls for remediation.
- Research cutting edge security topics and new attack vectors
- Conduct compliance testing on web-based application, mobile applications and thick/thin-client application that meet predetermined Technology Security Standards and other regulatory requirements such as MAS TRMG.
- Conduct secure code review when required
- Perform thick client penetration testing when required
Job Qualifications
Requirements
Minimum 3 years of hands-on penetration testing experience for web applications, mobile applications, and APIs
- Experience conducting Secure Code Review
- Degree in computer science/computer engineering/information security or equivalent.
- A working knowledge of all aspects of information security is essential.
- Familiarity of MAS TRMG and other regulatory/industries requirements.
- Good communication (spoken and written) skills, able to work independently and as a team
- Certifications from either GIAC/Offensive Security/CREST required.
- Hands on experience in using Kali Linux, tools such as Burp, Tenable and other penetration testing, and secure code review tools
- Experience in conducting penetration testing for Banks in Singapore will be highly preferred
- Experience in conducting code review for AS400 and legacy mainframe systems will be an advantage
Primary Location
Singapore
Job
Information Security
Organization
Technology Information Security Office (TISO)
Schedule
Permanent
Full-time
Job Posting
17-Nov-2024, 9:12:19 PM
