
Security Vulnerability and Penetration Testing Engineer
2 days ago
Security Vulnerability and Penetration Testing Engineer
The Security Vulnerability and Penetration Testing Engineer will oversee and serve as a technical resource for all assessment activities related to the security posture of existing and proposed firm systems, platforms, and processes to protect and continually improve the confidentiality, integrity, and availability of information systems per the firm's business objectives, regulatory requirements, and strategic goals.
Main Responsibilities
- Perform security penetration testing of the Firm’s systems, platforms, and applications
- Serve as a Subject Matter Expert (SME) for the VAPT function
- Serve as the system owner for common VAPT toolsets, platforms, and processes
- Provide technical assessment reports that are easily understandable by the target audience and include practical and reasonable recommendations based upon sound risk management principles
- A Computer Science bachelor’s degree or substantially equivalent experience
- CISSP is required
- GIAC GPEN or GWAPT is preferred
- Offensive Security OSCP is required
- Commanding knowledge of VAPT concepts and best practices, including the requirements for WhiteHat/ethical hacking
- Expert understanding of the difference between a vulnerability assessment and a penetration test in the context of assessment scope, objectives, and deliverables
- Extensive experience with common automated VAPT tools such as Nessus, Appscan, Burp Suite, Nipper, and Trustwave
- Expert in common attack tools and frameworks such as Wireshark, Kali, Metasploit, etc.
- Expert in mobile platform security technology, including vulnerability identification and exploitation tools, as well as mobile platform security best practices, frameworks, etc.
- Understand VAPT in the context of risk management and organizational priorities
- Passionate in the practice and pursuit of VAPT excellence
- Able to validate the presence of identified vulnerabilities with accuracy
- Master in common application platforms and technologies to effectively understand and evaluate complex application assessments via the use of manual techniques and simple tools such as proxies and browser plugins
- Authoritative mastery of OWASP, CVE, general security controls, and other foundational topics, such as the latest application and operating system exploits
- Expert knowledge of common scripting and programming languages is advantageous.
- Ongoing commitment to understanding the threat landscape and common adversary motivations/practices. Ability to quickly adapt practices to evolving circumstances
- Able to maintain critical thinking and composure under pressure
- Strong written and oral communication skills. Ability to convey complex concepts to non-technical constituents. Proficiency in oral and written English
- Capable of assisting with the preparation of internal training materials and documentation
About Us
At Baker McKenzie we are different in the way we think, work and behave. With our team of 13,000 people, including over 6,500 locally admitted lawyers, in over 70 offices worldwide, we have a passionately collaborative community of 60 nationalities and are committed to world-class career development to everyone in every job at every level. Baker McKenzie can offer you both the uncompromising commitment to excellence expected of a top firm paired with a passionately global and genuinely collaborative working environment.
Baker McKenzie is an Equal Opportunity Employer. We are committed to promoting diversity and inclusion for all. Our unique international culture is reflected in the drawing together of a worldwide family of individuals from diverse cultures and backgrounds in all of our offices. We encourage the best people - regardless of race, religion or belief if any, gender, gender identity, disability, sexual orientation or age - to fulfill their professional aspirations with us. We are committed to ensuring an inclusive and accessible experience for all candidates.
#J-18808-Ljbffr-
Bonifacio Global, Metro Manila, Philippines B & M Global Services Manila, Inc. Full time ₱6,480,000 - ₱7,920,000 per yearThe Security Vulnerability and Penetration Testing (VAPT) Engineer will oversee and serve as a technical resource for all assessment activity related to the security posture of existing and proposed firm systems, platforms, and processes to protect and continually improve the confidentiality, integrity, and availability of information systems per the...
-
Lead Security Engineer – Penetration Testing
4 days ago
, Metro Manila, Philippines Buscojobs Full timeLead Security Engineer – Penetration Testing Posted today Job Description Summary: As a Security Engineer, you will apply your security expertise to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve collaborating with various teams to ensure the security of information and infrastructures...
-
Cyber Security Testing Specialist
4 days ago
, Metro Manila, Philippines Buscojobs Full timeCyber Security Testing Specialist – Makati Makati City, National Capital Region ₱ - ₱ Posted 1 day ago Job Description This position is primarily responsible for conducting security testing, vulnerability assessment, and penetration testing to assess the security weaknesses of networks, systems, and applications. Key Responsibilities : Conducts...
-
Manila, National Capital Region, Philippines DL Public Relations Full time ₱800,000 - ₱1,200,000 per yearPenetration Engineer (Senior/Advanced/Expert) – Mandarin Speaker Work Location: Remote Job Level: Senior to Expert Level Openings: 3 Positions Languages: Mandarin (Fluent), English (Professional)Are you a highly skilled penetration tester with a passion for offensive security? We are looking for Mandarin-speaking Penetration Engineers at Senior to Expert...
-
Penetration Tester 3
2 weeks ago
, , Philippines Asurion Full timeThe Application Penetration Tester will assist Asurion in developing secure products by providing best-in-class application security penetration testing and security assessment services to the product development organization, while passionately pursuing personal and organizational excellence in the field of application/product security. Core Duties and...
-
Vulnerability Analyst
4 days ago
, Metro Manila, Philippines Buscojobs Full timeVulnerability Analyst Location: MOA, Pasay Work Setup: Hybrid (1–2x a month RTO) Schedule: Mid Shift (Login between 4–5 PM) Job Description Vulnerability Analysts aid in the identification, assessment, and communication of new and emergent threats in the cybersecurity landscape, specifically vulnerability intelligence and detections. You will be expected...
-
SAP Security Vulnerability assessment
7 days ago
Manila, National Capital Region, Philippines NYGC Services, Inc. Full time ₱1,200,000 - ₱2,400,000 per yearJob Description:Project Title : SAP Security Vulnerability assessmentLocation : Metro ManilaWork setup : HybridSummary:Responsible for applying security skills to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve providing services to safeguard information, infrastructures, applications, and...
-
Cyber Security Engineer
4 days ago
, , Philippines Questronix Corporation Full timeResponsibilities Level 3 Cybersecurity Incident Response Level 2 IR coordination Daily Cybersec Ticket Management Vulnerability Assessment and Penetration Testing Exercise Assist in requirements analysis and solutions design Assist in project management deliverables (network matrix, implementation plan, etc.) Provide configuration and administration support...
-
Security Testing and Assurance Section Head
2 weeks ago
, , Philippines Bank of Commerce (Philippines) Full timeOverview JOB SUMMARY The Section Head of Security Testing and Assurance (STA) is responsible for overseeing all technical security testing activities. This includes the planning, coordination, execution, and oversight of outsourced services related to vulnerability assessments, penetration testing, compromise assessments, threat hunting, red/purple teaming,...
-
IT Security Support
2 weeks ago
Libis, Metro Manila, Philippines ALLCARD TECHNOLOGIES CORPORATION Full time ₱900,000 - ₱1,200,000 per yearAbout the role Join the dynamic and innovative team at ALLCARD as an IT Security Support specialist. In this full-time role based in Libis, Quezon City, Metro Manila, you will play a crucial part in safeguarding the company's information assets and ensuring robust cybersecurity measures are in place.What you'll be doingMonitoring and maintaining the...