AVP - Senior Penetration Tester (Hybrid)

4 months ago

Singapore Citi Full time
About the job

If you are passionate and curious about security, and want to use your offensive security skills to help keep our firm's application and infrastructure safe, we want to speak with you.

Who You Are

You are talented in solving problems and identifying security weaknesses, and you have experience collaborating with engineers who remediate the vulnerabilities you identified. You adapt well to changes, and speak up to ask questions to clarify when things don't look right.

As someone with an offensive security mindset, you work closely with others to listen to ideas and share suggestions to collectively devise the best approach to remediate vulnerabilities,

continuously learn and enhance skillsets, techniques and methods.

You should have a bachelor's degree with minimally 5 years of relevant experience. Have a good understanding of industry frameworks and methodologies such as OWASP, OSSTMM, PTES, MITRE ATT&CK, threat modeling, etc. Be certified, or intend to be certified, in accredited security certifications such as OSCP, OSWE, GXPN, GCPN, CISSP, etc.

What You'll Do

As an individual contributor on our penetration testing team, you are responsible for:
  • Preparing and executing penetration testing assignments on our infrastructure assets and applications
  • Working closely with the engineering teams to provide expert guidance and advice on remediation of identified vulnerabilities
  • Verifying newly discovered vulnerabilities in the environment
  • Reporting security vulnerabilities to businesses, clearly articulating security issues to technical and non-technical stakeholders
  • Guide and support other team members using your strong technical knowledge
  • Identify inefficiencies in the team's workflow, suggest solutions and drive outcomes
This role focuses strongly on your ability to perform manual penetration testing on infrastructure related systems and devices. To be a good fit for this role, you should be able to identify security weaknesses and vulnerabilities in various platforms, and efficiently deliver security assessment assignments.

What You'll Bring

Identify vulnerabilities and zero-day exploits though various means of analysis using:
  • Vulnerability assessment tools such as Nessus, Qualys, Kali Linux, AppScan, Burp Suite, etc.
  • Familiar with scripting languages such as Python
  • Good knowledge of:
    • TCP/IP, IDS/IPS, firewalls, AAA systems, SSH, PKI
    • OS Security - Unix, Linux, Windows, Android/IOS
    • Common protocols - LDAP, SMTP, DNS, routing etc.
    • Web application infrastructure - application servers, web servers, databases, cloud services, containers technologies etc.
Provide guidance to other team members and share knowledge and findings with them

How You'll Succeed

Be consistent and conscientious in identifying security vulnerabilities and working with the respective engineering teams and stakeholders to provide sound guidance and remediations. Be a team player, and a keen learner.

#LI-Hybrid
------------------------------------------------------

Job Family Group:
Technology
------------------------------------------------------

Job Family:
Information Security
------------------------------------------------------

Time Type:
Full time
------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi .

View the " EEO is the Law " poster. View the EEO is the Law Supplement .

View the EEO Policy Statement .

View the Pay Transparency Posting

  • AVP - Application Penetration Tester (Hybrid)

    4 months ago

    Singapore Citi Full time

    Whether you're at the start of your career or looking to discover your next adventure, your story begins here. At Citi, you'll have the opportunity to expand your skills and make a difference at one of the world's most global banks. We're fully committed to supporting your growth and development from the start with extensive on-the-job training and exposure...

  • Cybersecurity Penetration Tester

    2 weeks ago

    Singapore SEARCHELECT PTE. LTD. Full time

    Roles & ResponsibilitiesPenetration TesterAre you a skilled and experienced Penetration Tester who loves to challenge yourself and think outside the box? Do you want to join a CREST accredited specialist security firm that offers a variety of exciting projects and opportunities for career growth? If so, read on!About Our ClientOur client is a specialist...

  • Cybersecurity Penetration Tester

    4 weeks ago

    Singapore SEARCHELECT PTE. LTD. Full time

    Roles & ResponsibilitiesPenetration TesterAre you a skilled and experienced Penetration Tester who loves to challenge yourself and think outside the box? Do you want to join a CREST accredited specialist security firm that offers a variety of exciting projects and opportunities for career growth? If so, read on!About Our ClientOur client is a specialist...

  • Penetration Tester

    2 weeks ago

    Singapore DOCYBER PTE. LTD. Full time

    Roles & ResponsibilitiesWe are seeking experienced penetration testers to perform penetration tests on networks, web applications, mobile applications, and/or infrastructures on a project-by-project basis.Requirements OSCP certification is a must. CREST certification is an advantage. Familiarity with local government VAPT procedures is an advantage. CAT2...

  • Penetration Tester

    2 weeks ago

    Singapore DOCYBER PTE. LTD. Full time

    Roles & ResponsibilitiesWe are seeking experienced penetration testers to perform penetration tests on networks, web applications, mobile applications, and/or infrastructures on a project-by-project basis.Requirements OSCP certification is a must. CREST certification is an advantage. Familiarity with local government VAPT procedures is an advantage. CAT2...

  • Penetration Tester

    4 weeks ago

    Singapore LANTU EMPLOYMENT AGENCY PTE. LTD. Full time

    Roles & ResponsibilitiesJob Summary:We are seeking a highly skilled Penetration Tester to join our cybersecurity team. In this role, you will be responsible for performing advanced penetration tests on networks, web applications, and systems to identify vulnerabilities and recommend security improvements. The ideal candidate will have experience with various...

  • Penetration Tester

    2 weeks ago

    Singapore LANTU EMPLOYMENT AGENCY PTE. LTD. Full time

    Roles & ResponsibilitiesJob Summary:We are seeking a highly skilled Penetration Tester to join our cybersecurity team. In this role, you will be responsible for performing advanced penetration tests on networks, web applications, and systems to identify vulnerabilities and recommend security improvements. The ideal candidate will have experience with various...

  • Junior penetration tester

    4 weeks ago

    Singapore Secur Solutions Group Full time

    Job Summary: We are seeking a motivated and detail-oriented Junior Penetration Tester to join our cybersecurity team based in Singapore. In this role, you will assist in identifying vulnerabilities in systems, networks, and applications by performing security assessments and penetration tests. The ideal candidate must be able to work both independently and...

  • Consultant - Penetration Tester

    3 weeks ago

    Singapore Deloitte Full time

    Are you ready to unleash your potential?At Deloitte, our purpose is to make an impact that matters for our clients, our people, and the communities we serve. We believe we have a responsibility to be a force for good, and WorldImpact is our portfolio of initiatives focused on making a tangible impact on society’s biggest challenges and creating a better...

  • Junior Penetration Tester

    2 weeks ago

    Singapore LANTU EMPLOYMENT AGENCY PTE. LTD. Full time

    Roles & ResponsibilitiesJob Summary:We are seeking a motivated and detail-oriented Junior Penetration Tester to join our cybersecurity team based in Singapore. In this role, you will assist in identifying vulnerabilities in systems, networks, and applications by performing security assessments and penetration tests. The ideal candidate must be able to work...

  • Junior Penetration Tester

    4 weeks ago

    Singapore LANTU EMPLOYMENT AGENCY PTE. LTD. Full time

    Roles & ResponsibilitiesJob Summary:We are seeking a motivated and detail-oriented Junior Penetration Tester to join our cybersecurity team based in Singapore. In this role, you will assist in identifying vulnerabilities in systems, networks, and applications by performing security assessments and penetration tests. The ideal candidate must be able to work...

  • Cloud Penetration Tester

    4 weeks ago

    Singapore ST ENGINEERING INFO-SECURITY PTE. LTD. Full time

    Roles & ResponsibilitiesWe are seeking an experienced Cloud Penetration Testerto join our team. The successful candidate will have expertise in cloud security, penetration testing, and vulnerability assessment. The role involves identifying and exploiting vulnerabilities in cloud-based systems, applications, and infrastructure to help our organization...

  • Cloud Penetration Tester

    2 weeks ago

    Singapore ST ENGINEERING INFO-SECURITY PTE. LTD. Full time

    Roles & ResponsibilitiesWe are seeking an experienced Cloud Penetration Testerto join our team. The successful candidate will have expertise in cloud security, penetration testing, and vulnerability assessment. The role involves identifying and exploiting vulnerabilities in cloud-based systems, applications, and infrastructure to help our organization...

  • Senior Cybersecurity Specialist

    4 weeks ago

    Singapore Citi Full time

    About the RoleWe are seeking a skilled Senior Cybersecurity Specialist to join our team as a Penetration Tester. This is an exciting opportunity to leverage your expertise in identifying and addressing security vulnerabilities to protect our organization's infrastructure and applications.Job DescriptionPrepare and execute penetration testing assignments on...

  • Security Penetration Tester

    6 days ago

    Singapore ANRADUS PTE. LTD. Full time $4,000 - $6,000

    Job DescriptionIndustry/ Organization Type: IT/CybersecurityPosition Title: Security Penetration TesterWorking Location: Tai SengWorking Hours: 5 days (Monday to Friday 8 AM – 5 PM / 9 AM – 6 PM)Salary Package: Basic Salary up to $6,000 + AWS + Performance BonusDuration: PermanentKey ResponsibilitiesConduct thorough penetration testing on web and mobile...

  • Cloud Penetration Tester

    1 month ago

    Singapore St Engineering Info-security Pte. Ltd. Full time

    We are seeking an experienced Cloud PenetrationTesterto join our team. The successful candidatewill have expertise in cloud security, penetration testing, andvulnerability assessment. The role involves identifying andexploiting vulnerabilities in cloud-based systems, applications,and infrastructure to help our organization strengthen its...

  • Cybersecurity Penetration Tester

    2 months ago

    Singapore CROWE HORWATH FIRST TRUST RISK ADVISORY PTE. LTD. Full time

    Roles & ResponsibilitiesJob Roles and Responsibilities:The Cybersecurity Penetration Tester will be responsible for conducting regular audits on our client’s IT systems, ensuring compliance with all relevant regulations and standards. The ideal candidate will have a strong understanding of IT systems, network security, and audit procedures. Job...

  • Product Penetration Tester

    4 weeks ago

    Singapore FLEXXON PTE. LTD. Full time

    Roles & ResponsibilitiesFlexxon specializes in hardware-based cybersecurity solutions, creating cutting-edge technology to protect digital assets against evolving cyber threats.We are currently looking for a Penetration Tester to join our team. If you’re passionate about cybersecurity and meet the qualifications, we encourage you to apply and be part of...

  • Product Penetration Tester

    2 weeks ago

    Singapore FLEXXON PTE. LTD. Full time

    Roles & ResponsibilitiesFlexxon specializes in hardware-based cybersecurity solutions, creating cutting-edge technology to protect digital assets against evolving cyber threats.We are currently looking for a Penetration Tester to join our team. If you’re passionate about cybersecurity and meet the qualifications, we encourage you to apply and be part of...

  • Cybersecurity Professional: Penetration Tester Position

    3 weeks ago

    Singapore ANRADUS PTE. LTD. Full time

    Job DescriptionWe are seeking a highly skilled Cybersecurity Professional to fill the position of Penetration Tester. As part of our team, you will be responsible for conducting thorough penetration testing on web and mobile applications, networks, and cloud infrastructure.Duties and ResponsibilitiesIdentify and exploit vulnerabilities in various systems and...