发布 Aug 01, 2024 426 查看
We are seeking a skilled Vulnerability Assessment and Penetration Testing Specialist to join our cybersecurity team. This role involves conducting network/system vulnerability assessments, penetration testing, and configuration compliance assessments to ensure robust security across all systems. The ideal candidate will have strong knowledge of various operating systems, network devices, and application security standards, and will be adept at identifying and mitigating security vulnerabilities.
Responsibilities
- Conduct network/system vulnerability assessments and penetration testing using various tools to evaluate attack vectors and identify system vulnerabilities.
- Provide appropriate remediation plans for the mitigation of identified vulnerabilities.
- Perform application vulnerability assessments and penetration testing for web applications, identifying and reporting vulnerabilities, providing recommendations, and tracking the closure of identified issues.
- Conduct configuration compliance assessments for endpoints, assets, and network devices to ensure security settings align with specific security standards.
- Regularly monitor patch compliance of assets within the network, analyze patch advisories, and provide remediation steps to stakeholders.
- Conduct comprehensive reviews and threat adversary modeling for web applications.
- Perform device hardening, application security assessments, log reviews, document reviews, network monitoring, and reporting.
- Stay updated on new vulnerabilities, tools, and best practices, compiling findings for departmental use.
- Create project deliverables and reports, and assist clients with remediation strategies and discussions.
Skills & Qualifications
- Strong understanding of OSI layers and fundamental operating system concepts, including security settings for various flavors of Windows and Linux platforms.
- Proficiency in manual penetration testing techniques, alongside automated tools and frameworks.
- Experience with publicly available exploit codes.
- Hands-on knowledge of tools such as Nmap, Kali Linux, Metasploit, Armitage, Maltego, Burp Suite, Paros Proxy, Nessus, Nexpose, Wireshark, and sqlmap.
- In-depth knowledge of infrastructure vulnerability scans, identifying security vulnerabilities, weaknesses, threats, and assessing related risks within IT infrastructure or business processes.
- Thorough understanding of application vulnerability assessments, including familiarity with OWASP Top 10 vulnerabilities and SANS standards.
- Strong understanding of firewall, switch, and router configuration settings and policies, with relevant experience in performing rule base reviews and configuration reviews for network devices.
pMTBC was established in 1999. Headquartered in New Jersey, USA, it is a dynamic and rapidly growing multinational healthcare IT Company. Deloitte Technology Fast 500 ranked MTBC in its list of fastest growing technology companies of North America. The Company has attained tremendous growth in the short span of a few years, which is testament to well-implemented, technology-based processes and which also lays the foundations for productivity. MTBC is following a formula of long-term growth by combining and utilizing labor force increase, investment activity and scientific and technological progress. MTBC offers American physicians customized solutions that reflect the very best in practice management services available in the industry today. Our services maximize the power of the Internet and technology to give medical providers better control over scheduling and billing, total access to all of their billing information, and comprehensive practice-management reports, all the while reducing the cost factor. The organization's management envisions reinvesting most of its earned profits mainly towards IT, and developing various technology-based solutions that will completely replace manual processes. MTBC operates 24/6 with a workforce of more than 1000 employees operating in three shifts in Rawalpindi & Bagh (AJK). The Company is providing a platform to young professionals to learn and practice their innovative ideas in a healthy work environment./p
Zubair Anjum
Business Excellence Specialist
Nestle Pakistan
Sehrish Azhar
Motivational Speaker & Blogger
Living Upbeat
Zohaib Ali
Marketing Manager
Digital Online Devices
Usman Habib
Recruitment & Training Executive
ACS Synergy (Pvt) Ltd.
Mona Sharif
Senior Team Lead
Konext PVT. LTD
Babar Ahmed Khan
Territory Sales Manager
Engro Foods
Aqib Irshad
Head of HR, Training & OD
FINCA
Ayesha Shaukat
Social Media Marketing Manager
Ivoke
Ali Aziz
CEO
Shopistan
Muzammil Baig
Digital Marketing Manager
IT Services Group
