Penetration Tester (Remote)

Dell Security organization manages the security risk across all aspects of Dell’s business. We are currently experiencing incredible growth in order to meet the security needs of the world’s largest technology company. With team members located in over 15 countries, you will have an excellent opportunity to influence the security culture at Dell and further develop your career.
Join us as a Penetration Tester based in Vietnam. The ideal candidate will possess a deep understanding of attack surfaces in modern compiled applications and operating systems. Candidates must demonstrate the ability to analyze closed source applications using several off-the-shelf or custom-developed tools. Additionally, the ideal candidate will be able to demonstrate exceptional organizational skills, work efficiently under minimal supervision, be able to deliver results that meet or exceed client expectations, be a strong team player, and actively participate in a fast-paced and challenging global environment.
You will:
• Work with technology groups to evaluate, select, install, and configure hardware/software systems to comply with established enterprise security standards and policies.
• Provide technical expertise and advice on all areas of security technology, including network security, platform security, authentication/authorization systems, application security, security architecture, policy enforcement, and security frameworks.
• Discover and exploit vulnerabilities affecting Dell&039;s infrastructure.
• Escalate issues to vendors, security teams, and engineering through standard escalation processes.
• Participate in or work directly on, additional projects, assignments, or initiatives as required.
• Communicate information security procedures to the business.
• Integrate information security controls into an environment to identify risks and reduce impact.
• Develop and maintain tools to assist in vulnerability research and exploit development.

Essential Requirements:
• Scripting experience with the ability to develop custom scripts, exploits, and tools
• 3+ years direct or equivalent experience in areas of penetration testing, exploit development, vulnerability research and fuzzing.
• Competency with any of the following tools: User and kernel-mode debuggers (WinDbg, OllyDbg/Immunity Debugger), IDA Pro, Hex-Rays, Visual Studio, Driver Verifier
• Experience performing host, network, and web application penetration tests
• Experience with common penetration testing tools
• Experience developing detailed penetration testing reports that can speak to multiple audience types
• Knowledge of Windows development (C/C++/C) user mode and kernel mode applications.
• In-depth knowledge and experience with Windows Operating Systems Internals (Kernel, Registry, File system, Windows APIs).
• 5+ years of Information Security experience.
Desirable Requirements:
• Candidates possessing the following will be given preferential consideration:
• Bachelor of Science in Computer Science, Computer Engineering, or Electrical Engineering or a related technical field or equivalent professional experience.
• Source code review for control flow and security flaws.
• Experienced programming using x86/x64 assembly C, C++, and Python (or a comparable scripting language).
• Have published security research or security bug.
• Possess excellent communication skills in English, both written and verbal.
• Excellent problem-solving skills with the ability to diagnose and troubleshoot technical issues.
• Customer-oriented with a strong interest in customer satisfaction.
• Familiar with the Metasploit framework.

Competitive salary and bonus
Professional and active working environment
Social insurance, health insurance, unemployment insurance according to Labor Laws

Cập nhật gần nhất lúc: 2021-02-06 00:30:02