technical analyst United Kingdom
True Goal Consultants
Full Time
United Kingdom
32500 - 26000 GBP ANNUAL Today
Job description
Job ID: TG/APR2023/01
Number of Positions: 01
Duties & Responsibilities:
- Plan and create penetration methods, scripts and tests.
- Carry out remote testing of a client’s network or on-site testing of their infrastructure to expose weakness in security.
- Conduct network penetration testing, system vulnerability assessment & security configuration review.
- Knowledge on open source and commercial security assessment tools e.g., Burp suit, Nessus, App scan, Nmap etc.
- Create reports and recommendations from your findings, including the security issues uncovered and level of risk.
- Knowledge of the OWASP Top 10, SANS top 25.
- Identify vulnerabilities in computer systems, networks, and applications that can be exploited by attackers.
- Help creating prioritized overviews of Cyber vulnerabilities and putting these in a context of IT services and Business applications.
- Simulate security breaches to test a system’s relative security.
- Conduct application penetration exercise using automated tools, customized exploits and manual analysis.
Skill Required:
- Strong technical background in networking/system administration, security administration & testing or related fields.
- Well familiar with basics of TCP/IP and Networking principles.
- Good understanding of OWASP top 10 and web Application security audits.
- Manual Penetration Testing skillsand techniques are required besides automated tools andframeworks.
- Ethical hacking VAPT Red Team Whitebox Testing Greybox Testing.
- Hands on knowledge on Tools: Nmap, Kali Linux, Metasploit,Armitage,Maltego, Burp, Paros ProxyNessus, nexpose, wireshark,sqlmap etc.
- Should have exposure to Code review, Network VA/PT and App VA/PT work.
- Understanding and familiarity with common code review methods and standards.
- Experience with code scanning toolsets such as Fortify and Ounce.
- Understanding of HTTP and webprogramming.
- Knowledge of OWASP tools and methodologies, common security requirements within ASP.NET application, standard SDLC practices.
- Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions(proxy, web filtering).
- In-depth understanding on Common Vulnerability Exposure (CVE)/ Cert advisory database.
Job Type: Full-time
Salary: £26,000.00-£32,500.00 per year
Schedule:
- Monday to Friday
Work Location: Hybrid remote in Middlesex, TW15 2UD
Reference ID: TG/APR2023/01
