Junior Offensive Security Specialist
Generali
Trieste
25
Scarso
help
thumb_up Mi piace
Azienda: Generali Trieste
These roles will cover specializations and will perform tasks associated with the execution and continuous further improvements in a wide range of different technical Cyber Security disciplines like vulnerability assessment and penetration testing, red teaming, and vulnerability management.
The candidate will be involved in the following activities: Monitoring the attack surface exposure through the execution of technical security tests activities across the Group, addressing and controlling the remediation of resulting vulnerabilities at Group level.
Monitoring the effectiveness of IT Security measures implementation through the execution of technical security tests activities across the Group.
Steering and controlling the vulnerability management activities performed by shared service entity (GOSP).
Defining and maintaining Group cyber security testing and vulnerability management technical measures, standards, and frameworks, driving their implementation at Group level.
Performing reporting activities related to main vulnerability management KP Is.
Requirements The ideal candidate will have the following requirements: Bachelor's degree, preferably in Computer Science and Engineering, or comparable training with professional experience in the relevant area.
Certification related to technical security (e. g. , GIAC, OSCP, CEH) and willingness for continuous further qualification in relevant topics.
Ability to work in large international projects related to strategic topics and transformation initiatives.
Demonstrated ability to work effectively as part of a diverse and cohesive team of technically interested colleagues.
Demonstrated enthusiasm for Information Security (e. g. , Git Hub repo, blogs, presentations, conference talks, participation in free skill-building / hacking challenges).
Strong analytical and communication skills, and out-of-the-box thinking with a problem-solving mindset.
Minimum 5 years of experience working in global organizations.
Excellent written and oral knowledge and fluency in English.
The ideal candidate has to be in possession of skills and demonstrate solid practical hands-on experience in most of the following areas: Knowledge of main penetration tests methodology (e. g. , OWASP) and TTP techniques (e. g. , MITRE) and ability to execute vulnerability assessment activities operated with some of the main commercial and open scanning tools (e. g. , Nessus, NMAP, Qualys).
Perform penetration tests on complex applications and systems, with practical experience in using exploit tools (e. g. , Metasploit, Burp Suite, Kali Linux).
Proficiency in creating and customizing automation tools using multiple common programming/scripting languages (e. g. , Python, Powershell, Bash, PERL, Ruby, PHP).
Knowledge of main networking protocols and services, including cloud-oriented services.
The opportunity is available in a hybrid mode.
Contract Type: Permanent #J-18808- Ljbffr
✔ Generali