Penetration Tester
1 month ago
About the job
If you are passionate and curious about security, and want to use your offensive security skills to help keep our firm’s application and infrastructure safe, we want to speak with you.
Who You Are
You are talented in solving problems and identifying security weaknesses, and you have experience collaborating with engineers who remediate the vulnerabilities you identified. You adapt well to changes, and speak up to ask questions to clarify when things don’t look right.
As someone with an offensive security mindset, you work closely with others to listen to ideas and share suggestions to collectively devise the best approach to remediate vulnerabilities,
continuously learn and enhance skillsets, techniques and methods.
You should have a bachelor’s degree with minimally 3 years of relevant experience. Have a good understanding of industry frameworks and methodologies such as OWASP, OSSTMM, PTES, MITRE ATT&CK, threat modeling, etc. Be certified, or intend to be certified, in accredited security certifications such as OSCP, OSWE, GXPN, GCPN, CISSP, etc.
What You’ll Do
As an individual contributor on our penetration testing team, you are responsible for:
Preparing and executing penetration testing assignments on our infrastructure assets and applications
Working closely with the engineering teams to provide expert guidance and advice on the remediation of identified vulnerabilities
Verifying newly discovered vulnerabilities in the environment
Reporting security vulnerabilities to businesses, clearly articulating security issues to technical and non-technical stakeholders
This role focuses strongly on your ability to perform manual penetration testing on infrastructure related systems and be a good fit for this role, you should be able to identify security weaknesses and vulnerabilities in various platforms, and efficiently deliver security assessment assignments.
What You’ll Bring
Identify vulnerabilities and zero-day exploits though various means of analysis using:
Vulnerability assessment tools such as Nessus, Qualys, Kali Linux, AppScan, Burp Suite, etc.
Familiar with scripting languages such as: Python
Good knowledge of:
TCP/IP, IDS/IPS, firewalls, AAA systems, SSH, PKI
OS Security - Unix, Linux, Windows, Android/IOS
Common protocols - LDAP, SMTP, DNS, routing etc.
Web application infrastructure - application servers, web servers, databases, cloud services, containers technologies etc.
How You’ll Succeed
Be conscientious and consistent in identifying security vulnerabilities and working with the respective engineering teams and stakeholders to provide sound guidance and a team player, and a keen learner.
#LI-Hyrid
------------------------------------------------------
Job Family Group:
Technology------------------------------------------------------
Job Family:
Information Security------------------------------------------------------
Time Type:
Full time------------------------------------------------------
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review .
We have other current jobs related to this field that you can find below
-
Cloud Penetration Tester
2 weeks ago
Singapur, Singapore St Engineering Info-security Pte. Ltd. Full timeWe are seeking an experiencedCloud Penetration Testerto join our team. The successful candidate will have expertise in cloud security, penetration testing, and vulnerability assessment. The role involves identifying and exploiting vulnerabilities in cloud-based systems, applications, and infrastructure to help our organization strengthen its cloud security...
-
Cloud Penetration Tester
3 weeks ago
Singapur, Singapore St Engineering Info-security Pte. Ltd. Full timeWe are seeking an experiencedCloud Penetration Testerto join our team. The successful candidate will have expertise in cloud security, penetration testing, and vulnerability assessment. The role involves identifying and exploiting vulnerabilities in cloud-based systems, applications, and infrastructure to help our organization strengthen its cloud security...
-
(Senior) Cyber Security Consultant
1 month ago
Singapur, Singapore Wizlynx Group Full timeKey Role As (Senior) Cyber Security Consultant & Penetration Tester, you will execute a variety of engagements, conducting advanced hands-on penetration testing beyond automated tool validation, which will focus on targets that may include network devices, servers, web and mobile apps, web APIs, wireless infrastructures, IoT devices, and other...
-
Senior Penetration Tester
1 month ago
Singapur, Singapore 11112 Citibank, N.A. Singapore Full timeAbout the job If you are passionate and curious about security, and want to use your offensive security skills to help keep our firm’s application and infrastructure safe, we want to speak with you. Who You Are You are talented in solving problems and identifying security weaknesses, and you have experience collaborating with engineers who...
-
Singapur, Singapore 11112 Citibank, N.A. Singapore Full timeWhether you’re an application developer looking to make the switch into the challenging, yet rewarding, world of information security, or you’re a rock star white-hat hacker, Citi is the place for you. Our team of world class, talented individuals, who are passionate about security, put their skills to the test every day on a global scale. At Citi...
-
Engineer/Senior Engineer, Cyber Security Tester
4 weeks ago
Singapur, Singapore Continental Full timeJob Description Identify and establish project specific security & privacy verification/validation measures such as weak points in Vehicle functions and new attack vectors. Collect information about SUT (System Under Test) on High Performance Computer, Body Control Module, Gateway, Telematics, Smart Mobile Access. Execute the testing activities in...
-
Security Consultant
1 month ago
Singapur, Singapore LRQA Full timeWe are looking for the right people to join us as we embrace the challenges thrown up by the advancements within the IT industry and within the threats faced. Nettitude will be at the forefront of this arena and we want to seek the right people to join the team and make it happen. You can find out more about us at . Role There is a new,...
-
Cyber Security Consultant
2 weeks ago
Singapur, Singapore Wizlynx Group Full timeKey Role As (Senior) Cyber Security Consultant & Penetration Tester, you will execute a variety of engagements, conducting advanced hands-on penetration testing beyond automated tool validation, which will focus on targets that may include network devices, servers, web and mobile apps, web APIs, wireless infrastructures, IoT devices, and other...
-
Manager, Cyber Security LKCMedicine
2 weeks ago
Singapur, Singapore NTU (Nanyang Technology University- Main Office-HR) Full timeThe Manager will work closely with theLKCMedicine IT to support the running of the various cybersecurity programmes and raising the cyber resilience ofLKCMedicine IT infrastructure.Responsibilities:Ensuring cybersecurity policies, standards and procedures are practicedLiaise with auditors and ensuring compliance with regulations and relevant policies and...
-
Cybersecurity Consultant
2 months ago
Singapur, Singapore Horangi Cyber Security Full timeThe Cybersecurity Consultant will work in Horangi’s Cyber Operations (Offensive) team, and works directly with Horangi’s customers to perform offensive security assessments. Members of the Cyber Operations (Offensive) team are generally familiar with most aspects of cyber security but specialize in penetration testing of web and mobile applications and...
-
Singapur, Singapore Careers@Gov Full time[What the role is] EXECUTIVE/CYBERSECURITY ENGINEER, CYBER ARCHITECTURE & DEVELOPMENT [What you will be working on] You will join our dynamic team and will be responsible for conducting Vulnerability Assessment and Penetration Testing (VAPT) for internal systems and providing consultancy on cybersecurity projects. The candidate should possess strong...
-
Cyber OT
3 weeks ago
Singapur, Singapore Kpmg Services Pte. Ltd. Full timeKPMG has established a strong cybersecurity consulting practice servicing clients from a wide array of sectors including energy, water, oil & gas, maritime, aviation, healthcare, transportation or telecommunications. Many of our clients own or operate critical infrastructure in Singapore and across the Asia Pacific region, providing essential resources and...
-
Security QA
5 days ago
Singapur, Singapore Bitfinex Full timeWe're on a mission to create the most innovative and industry-leading cryptocurrencies exchange.Our team is globally distributed and fully remote, so excellent English communication skills are critical for when we collaborate together to develop, support, and deliver the best platform possible for our users. If you get excited about being in an industry that...
-
Cyber OT
1 month ago
Singapur, Singapore KPMG - Singapore Full timeJob DescriptionKPMG has established a strong cybersecurity consulting practice servicing clients from a wide array of sectors including energy, water, oil & gas, maritime, aviation, healthcare, transportation or telecommunications. Many of our clients own or operate critical infrastructure in Singapore and across the Asia Pacific region, providing essential...
-
Risk Consulting, Cyber, Graduate Associate 2024
4 weeks ago
Singapur, Singapore KPMG - Singapore Full timeJob DescriptionAs part of the KPMG Cyber team, you will be working with experienced cyber security professionals and corporate partners under the 5 pillars of our Cyber business: Cyber Strategy and Governance professionals provide advice to CEOs, CISOs and CIOs on how to better manage cyber security by designing their Cyber Organisational Structure, and...
-
Risk Consulting, Cyber, Graduate Associate 2024
2 weeks ago
Singapur, Singapore KPMG - Singapore Full timeJob DescriptionAs part of the KPMG Cyber team, you will be working with experienced cyber security professionals and corporate partners under the 5 pillars of our Cyber business: Cyber Strategy and Governance professionals provide advice to CEOs, CISOs and CIOs on how to better manage cyber security by designing their Cyber Organisational Structure, and...
-
IT Operation Support Engineer
5 days ago
Singapur, Singapore Clixer+ Pte Ltd Full timeAbout You:We are looking to hire an experienced IT Operation Support Engineer person to join us on this journey, using their technology skills, to provide technical support for our managed service clients experiencing hardware, software, servers, and networking issues. They work either on-site or via remote systems to assist with software installations,...
-
Automation Test Engineer
2 weeks ago
Singapur, Singapore Singtel Full timeNCS is a leading technology services firm, operating across Asia Pacific in over 20 cities, providing services and solutions in consulting, digital services, technology, and more. We believe in utilizing the power of technology to make extraordinary things happen and to create lasting impact and value for our people, communities, and partners. Our diverse...
-
Automation Test Engineer
1 month ago
Singapur, Singapore Singtel Full timeNCS is a leading technology services firm, operating across Asia Pacific in over 20 cities, providing services and solutions in consulting, digital services, technology, and more. We believe in utilizing the power of technology to make extraordinary things happen and to create lasting impact and value for our people, communities, and partners. Our diverse...
-
Senior Engineer, App Sec
4 weeks ago
Singapur, Singapore Marina Bay Sands Full timeSummary of Job Responsibilities DevOps is responsible for integrating developer experience, infrastructure and technology operations support to enhance software development and deliver solutions inclusive of gaming related systems to achieve Sands business objectives. Job Responsibilities The primary responsibility of the AppSec Engineer is to...
