ئاسیاسێڵ پێویستی بە Cyber Security Testing Sr. Expert لە سلێمانی - Find a job in Kurdistan

گەورەترین سەرچاوەی دۆزینەوەی هەڵی کار لە کوردستان

02/09/2020

ئاسیاسێڵ پێویستی بە Cyber Security Testing Sr. Expert لە سلێمانی

 Job Announcement:

Job Title: Cyber Security Testing Sr. Expert

Employment Type: Permanent Fulltime

Job Location: Sulaimaniyah

Summary of the Position:

- Evaluate Asiacell relevant logical assets aiming at improving Asiacell cyber security posture and service availability.

- Work with development teams to create and maintain a secure SDLC process across the organization.

- Application penetration testing for web, desktop and mobile (IOS / Android) applications, web services, and APIs.

- Conduct manual secure code review to identify vulnerabilities in source code.

- Communicate discovered security vulnerabilities and their remediation recommendation with Technology.

- Guide the development team in the application vulnerabilities’ remediation.

- Develop scripts, applications and tools that help in tasks automation for CS operations.

Responsibilities & Duties:

- Conduct security Assessments for networks, systems and applications. 

- Support the Identification, development and implementation of new incident detections (Use cases). 

- Perform technical and forensic investigations into cyber security events, identification of cyber-threats and respond.

- Work with WAF system owner to achieve full system audit and improve security standing. 

- Perform forensic services for the collection, processing, preservation, analysis, and presentation of evidence in support of vulnerability mitigation, and information-security incident investigations. 

- Contribute to the continued technical enhancement of the security platforms. 

- Conduct vulnerability assessment and Penetration testing to identify security threats and remediation actions. 

- Perform cyber threat hunting for the detection of advanced threats. 

- Propose innovative-security solutions and consultancy services to improve security posture, reduce risk, control security threats, decrease assets and data exposure, prevent data loss, and control access, while benefiting from an extensive hands-on experience in secure solutions design, secure architectural development and probing, examination, audit, gap analysis, and forensic testing, in order to meet internal and external security needs. 

- Monitor and proactively report on threats and vulnerabilities. 

- Participate in investigating intrusion and hacking incidents, collect incident responses, and carry out forensic investigations 

 Academic Qualifications & Skills:

-BSc in computer science or engineering, 5+ years of experience in computer & networks security

- At least three years’ experience in application development using Java, C#, PHP, Ruby or Python, etc.

- Expertise in front-end application development technologies (such as JavaScript, HTML5, AJAX, jQuery, Angular, etc.

- Strong knowledge in web development framework such as Spring, Struts, ASP. NET MVC, etc

- Extensive knowledge in OWASP Top 10 and CWE Top 25.

- Good knowledge in databases such as MySQL, SQL Server, PostgreSQL, and Oracle, etc.

- In depth knowledge in operation systems (Linux, Windows) and basic network concepts.

- Recognized penetration-testing certificate (e.g., OSCP, GWAPT, eWAPT, eMAPT, etc.).

- Certified Incident Handling (CIH). - Professional Security Certificates (CISSP, CISM, ECAS, ISO27 LI/LA, Cyber Threat Investigator)

- CHFI (Certified Computer Hacking Forensics Investigator).  - LPT (Licensed Penetration Tester)

- ECSA (Certified Security Analyst).   - CEH (Certified Ethical Hacker)

For applying, please send CV to jobs@asiacell.com