全美资,全球最大的messaging产品及解决方案公司,主要做邮件系统开发。会有去美国或欧洲出差学习的机会。北京工作点点:朝阳区宵云路
Security Threat / Penetration Testing Specialist Role Responsabilities · Conducting ethical hacking / penetration testing on CP applications and products· Using a variety of techniques / processes to exploit potential weaknesses · Creating test cases, reporting on problems encountered and documenting test results for follow-up· Analyzing test results, drawing conclusions from results and developing targeted testing· Performing source code analysis · Interpreting results from penetration testing and explaining to software development teams· Consulting with software development teams to ensure potential weaknesses are addressed · Maintaining currency with new vulnerabilities, attacks, and countermeasures· Ensuring adoption of industry and enterprise best practices around information securityQualifications· Candidates will possess:· 5 + years of hands-on penetration testing / ethical hacking experience · Working knowledge of ethical hacking methodologies such as OSSTMM, OWASP and/or Penetration Testing Framework· Demonstrated experience with automated testing tools such as WebInspect, IP360, Metasploit, or similar products· Proven analytical and critical thinking abilities· Fundamental knowledge of networks, ports, protocols, and infrastructure setup· Programming background (C++, Perl, Python, Shell) for tool and exploit development· Full commitment to the highest ethical standards· Proven ability to communicate threats and facilitate progress towards long-term remediation· Degree or MSC in Computer Science or Engineering· Source code analysis experiences preferred· Industry-specific certifications, including CEH, OSCP, and/or GPEN desired有意者请请联系QQ:15284627 或直接E-MAIL:[email protected]
|
