At Vesuvius, we think beyond today to create innovative solutions that will shape the future of molten metal flow engineering and technology. Our products and services enable our customers to be safer, more efficient, and more sustainable.?
When you join Vesuvius, you join a diverse, entrepreneurial, decentralized business. You will be empowered to take decisive action working with like-minded people.
Do You Dare To Win?
IT Security – Pentester
MAIN DUTIES AND RESPONSIBILITIES
The primary responsibilities will be as follows:
- Performing semi-automatic pentests and manual inspections.
- Proactively searching for threats and Vulnerabilities.
- Presenting how different vulnerabilities might be exploited.
- identifying insecure IT practices and other weaknesses.
- Assessment of identified weaknesses for specific solutions and possible impact on the entire environment.
- Proposing feasible solutions to mitigate weaknesses.
- Providing L2 and L3 support to other teams in security-related issues.
- Performing offensive security tasks to mitigate and resolve security incidents.
- Preparing necessary documentation and reports.
- Cooperating with other team members to provide comprehensive service.
SKILLS, QUALIFICATIONS & EXPERIENCE
Must have:
- Experience as a pentester or security researcher/threat hunter.
- Ideally 2+ years' experience in a similar role.
- Excellent technical skills.
- Knowledge of vulnerability disclosure mechanism in systems in particular OWASP Top10 and CWE Top 25 Most Dangerous Software Weaknesses
- Knowledge of performing infrastructure or application pentesting
- Knowledge of security issues at a technical level
- Experience with some pentesting solutions.
- Communicative English including technical vocabulary.
Nice to have:
- Security certification from industry leaders,
- Experience working for an international organization,
- Experience with system security in an OT environment
- Knowledge of Penetration Testing Standards and Guidelines eg.
– OWASP Security Testing Guides
– PTES Technical Guidelines
– Penetration Testing Framework
– Technical Guide to Information Security Testing and Assessment (NIST 800-115)
– The Open Source Security Testing Methodology Manual
- Knowledge of reverse engineering methods
The individual will need to have the following key personal skills and attributes to perform successfully in this role:
- Excellent planning and organizational skills,
- Excellent interpersonal and communication skills,
- Excellent attention to detail,
- A proven ability to work unsupervised,
- Ability to work diligently and under pressure,
- Ability to manage multiple workstreams simultaneously, and;
- A proactive approach and a willingness to work outside the job specification when required.