Penetration Testing Manager

Location:Singapore
Position Category:Information Technology
Position Type:Employee Regular

**Who are LRQA Nettitude?**

At LRQA Nettitude our focus has always been on excellence in cyber security. We have teams that offer world class services in red teaming, penetration testing, threat intelligence, research and development, detection and response, governance, risk, and compliance, and plenty more. Our business is global and so are our clients. We work closely with central banks, central and local government, critical national infrastructure, large retailers, and plenty more besides

We’re an award winning provider of cyber security services and we’re are at a very exciting stage of development. We are looking for the right people to join us as we embrace the challenges thrown up by the advancements within the IT industry and within the threats faced. Nettitude will be at the forefront of this arena and we want to seek the right people to join the team and make it happen.

**Role purpose**:
Our Managing Principal Security Consultants are responsible for managing and leading our penetration testing teams. In addition to that they deliver their own penetration testing engagements with our clients. This includes the full lifecycle of an engagement from kick off call, testing, report creation, report delivery to debrief.

Managing Principal Security Consultants are responsible for the technical relationship of key clients. Consultants at this level are expected to demonstrate solid leadership capabilities and will be involved with key projects as a technical lead.

**Key Responsibilities**:
In your role you will:

- Manage and lead a pentesting team.
- Assist in security testing related presales activities, providing technical assessment of scope, principal security concerns and testing methodology to account manager.
- Develop client relationships and ensure Nettitude delivers professional consultative style engagements at all times
- When requested, provide technical analysis of current IT security related events, especially for the purpose of media coverage.
- Be a continuous learner, keeping up to date on a wide variety of IT security related skills and industry knowledge.

**Technical / Professional Qualifications / Requirements**:

- People management experience is a strong advantage.
- Penetration testing experience across multiple disciplines (App, Inf, Cloud).
- You love getting involved in deep technical challenges, while at the same time being able to abstract and explain the most complex issues to a C level exec.
- An ability to teach and mentor other members of the team is a distinct advantage; it’s part of what makes us Nettitude
- Exploit creation, scripting and reverse engineering are a distinct advantage.
- You code open source tools, contribute to security blogs, and participate in CTFs.
- A thirst for knowledge and a constant desire to push yourself to the max.

There are no formal requirements for any qualifications or certifications. We’re not looking for badge collectors; we look far deeper than that. However, one or more of the following will serve as a distinct advantage:

- Offensive Security (e.g. OSCP), GIAC and other industry recognized certifications.
- CREST certifications. Tiger Scheme and other equivalents equally considered.
- CCSK / CCSP / CISSP

Diversity and Inclusion at LRQA:
We are on a mission to be the place where we all want to work and we are passionate about embracing different perspectives because we understand the value this brings to our business, our clients and each other. We are all about creating a safer and more sustainable future and our inclusive culture is right at the heart of our business.

Together our employees make our communities better and we want you to be part of our diverse team

LRQA is a leading global assurance provider. The integrity and expertise we bring to our partnership with clients support their journey to a safer, more secure and more sustainable future. (Group entities).

Copyright © LRQA 2021. All rights reserved. Terms of use. Privacy Policy.