Senior Penetration Tester Jobs at AirAsia in Sepang, Selangor

Published 11 months ago

This vacancy post is more than 20 days old, may be no longer valid, please click the "Apply Now" button at the bottom for more information.

Select a language

AirAsia company opens jobs for Senior Penetration Tester positions in the Selangor region. The type of work we provide is Full-time.

The criteria for the employees we need are having Information Technology skills with Associate experience, as well as employees who are honest, disciplined and responsible.

The estimated salary offered by this company is quite competitive around RM 1,900 - RM 3,800 (per month). However, the salary can go up or down depending on the company that decides it.

The Headhunters company itself is engaged in Airlines and Aviation, of course if you are interested in applying for this company, you can register immediately.

Job Information

Company:AirAsia
Position:Senior Penetration Tester
Region:Selangor, Sepang - Selangor
Job Function:Information Technology
Seniority Level:Associate
Salary:MYR 1.900 - MYR 3.800 per Month
Employment Type:Full-time
Industry:Airlines and Aviation

Job Description

This position will report directly to the Manager, Information Security Testing. This role will be responsible for Red Team planning and reconnaissance assignment toward Capital A’s organisation network and environment. The candidate will provide planning, consultation, and awareness of the Group Information Security requirements to technical teams and other employees, and ensure its implementation.

In summary, in this role you will drive, deliver and further develop our red team operations portfolio. You will translate TTP’s into new approaches, tools & content. You will be a trusted adviser for helping us defend against advanced motivated attackers. All in all, you will be involving in all main Red Team operation assignments.

Job Description:

You are an experienced professional, working in this specific domain for over 3 years. Working in a red team does not contain any secrets for you, and your current colleagues often come to you when they encounter a problem.

  • Planning and working on RedTeam Exercises assignment
  • Identify, communicate, and manage current and emerging security threats with relevant stakeholders.
  • To manage end-to-end information security incidents with the assistance of incident management teams.
  • Performing reconnaissance of organisation networks, hosts and applications.
  • Automate attack techniques, creating custom tooling for specific operations
  • Consumable identified vulnerabilities and findings detailed reports covering the goals and outcomes of Red Team operations, including significant observations and recommendations
  • Working with various business, technology, and stakeholders to identify security risk and issue
  • Collaborate with Information Security Operation to improve detection and response capabilities.
  • Collaborate with non-technical teams to propose process and policy enhancements and additions.
  • Stay informed on current security trends, advisories, publications, and academic research that is relevant our organisation.

Requirements:’

  • Bachelor’s Degree in Information Technology, or Business with IT, Computer Science, or equivalent
  • 3+ years of penetration skills, exploitation and reconnaissance and experience using multiple penetration tools.
  • Relevant industry certification is an advantage (SANS, CISA, CISSP, CGEIT, etc)
  • Strong analytical and critical thinking skills to performing findings and verifications.
  • Understanding of the MITRE ATT&CK framework
  • Intermediate knowledge of exploit techniques, and common TTPs
  • Intermediate knowledge of one or more programming or scripting languages
  • Basic hands-on experience with at least one of the major cloud providers (GCP, AWS, Azure) Strong project management skills, with experience in collaborating with different business functions and key stakeholders.
  • Strong communication skills, with experience in involving technical and business counterparts, coordinating multiple stakeholders, and reporting
  • Working knowledge of local information and cybersecurity-related regulations and requirements is a huge advantage
  • Ability to develop, review and maintain documentation in a timely manner
  • Result-oriented, high level of attention to detail, self-starter and motivator, ability to multitask and adjust to shifting priorities.

Furthermore, you have these skills/ capabilities:

  • Deep understanding of attacker’s tools, tactics and procedures (TTP);
  • Apply and customize TTP’s to leverage at clients;
  • Thorough understanding of detection, monitoring and IOC’s ;
  • Out of the box thinker, able to come up with new solutions when others fail (eg: “try harder” attitude).

Benefit

  • gain experience
  • taught first
  • Get bonus if overtime

Job Application Information

The information we provide above may be updated suddenly, please keep looking for complete information via the "Apply Now" button or on the official website of the company AirAsia, so as not to find unwanted events ^_^.

Tips from Admin: applying for a job is free of charge.

Hopefully you get the job you want.

Instructions

  • Click the "Apply Now" button above.
  • After that you will be directed to the Submission of Application page, there are tips for submitting applications and interviews.
  • On the application submission page, click the "Application Form" button.
  • On that page you can see more complete company information and see the number of people applying for the job.
  • Next is to click "Apply".
  • Please register on the website if you don't have an account, but if you do, you can immediately fill out the application form.
  • Finished.

Company Information

AirAsia

AirAsia is a Malaysian low-cost airline based in Kuala Lumpur, Malaysia. It was established in 1993 and began operations in 1996. AirAsia operates flights to over 165 destinations across 25 countries in Asia, Australia, the Middle East, and Europe. The airline has won numerous awards for its successful business model and excellent customer service. AirAsia’s mission is to be the best low-cost airline in the world, providing travelers with the highest quality service at the lowest fares. The company offers a variety of services, such as online booking, inflight Wi-Fi, and a loyalty program. AirAsia’s focus on providing the best quality service at the lowest fares has enabled it to become a global leader in the airline industry.

Check other vacancies from the company: AirAsia