Job Description

• Conduct in-depth penetration tests on applications, network systems, and IT infrastructure.
• Develop and execute test plans, including vulnerability scanning, exploit research, and attack simulations.
• Identify and document security vulnerabilities, offering guidance and recommendations for remediation.
• Collaborate with the cybersecurity team to simulate realistic attack scenarios to evaluate the resilience of our systems.
• Stay current on new security threats, technologies, and techniques, applying them to improve testing strategies.
• Assist in developing and refining security policies and best practices to improve the company’s overall security stance.

What we are looking for

• Minimum Diploma in Computer Science, Information Security, or a related field. Relevant certifications are a plus (e.g., OSCP, CEH, CISSP).
• At least 2 years experience in penetration testing or a similar role in cybersecurity.
• Strong understanding of network protocols, application security, and operating systems.
• Proficiency with penetration testing tools (e.g., Metasploit, Burp Suite, Nmap).
• Experience with scripting languages (Python, Bash, etc.) and security frameworks.
• Excellent problem-solving skills with attention to detail.
• Familiarity with compliance and regulatory standards (e.g., GDPR, HIPAA, PCI-DSS).
• Hands-on experience with cloud platforms (AWS, Azure, Google Cloud) security assessments.
• Excellent command of English and Chinese in order to coordinate and handle queries from Chinese speaking counterparts