Penetration Testing Consultant - Secureworks - Japan
Kawasaki, JapanJob ID R81449 Date posted Nov. 30, 2018
Penetration Testing Consultant – Secureworks - Tokyo, Japan
Security and Risk Consulting Group
Secureworks (SCWX-NASDAQ) is a global leader in intelligence-driven information security solutions. We help organizations confidently pursue business goals in a digitally-connected world. Consistently recognized by industry analysts and readers’ polls, we are one of the best in the world at understanding and anticipating threat behavior. We see 250 billion events every day across 4400 clients in more than 55 countries, and our solutions work across all the layers of a client’s security environment, including 330 different vendor technologies. Join a talented, dedicated, and diverse team of researchers, analysts, engineers, consultants and business professionals who are focused 100% on protecting our clients from cyber threats. We seek out the brightest minds and empower our teams with the tools and support they need to fight the bad guys and maintain our company’s leadership in the cyber security industry.
Uniquely positioned to adapt as the industry evolves, we are also proud to be part of the Dell Technologies family. We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available, and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.
The Application Penetration Testing Consultant supports the Security and Risk Consulting /Technical Testing Team by applying information security threat intelligence to identify and exploit vulnerabilities within our client’s environments. The focus areas for this role are web and mobile application penetration testing, API testing, and code review.
-Conduct exploitation testing using off-the-shelf or self-developed exploitation tools and document findings for client remediation
-Produce and deliver vulnerability and exploit information to clients in the form of a professional security assessment report
-Conduct client conference calls to include, but not limited to project kick-off calls, notification of high/critical findings during the testing process, and close out calls to review test findings, evidence, process steps to reproduce, and remediation recommendations
-Perform proactive research to identify and understand new threats, vulnerabilities, and exploits
-Excel as both a self-directed individual contributor and as a member of a larger team
-Perform other essential duties as assigned
-Travel as needed to client locations primarily within the Tokyo area
As a managed security provider, Secureworks expects its employees to understand and apply commonly known security practices and possess a working knowledge of applicable industry controls such as NIST 800-53. Employees will be expected to acknowledge their security responsibilities in writing prior to gaining access to company systems. Employees will be required to maintain a working knowledge of local security policies and execute general controls as assigned.
-Minimum of 3 years of experience with security testing (Vulnerability Assessments, Web Application Testing, Network Penetration Testing, and/or Red Team)
-Minimum of 1 years of experience with at least one of the following: Burp Suite Pro, Metasploit, Kali Linux, Responder, Tenable (Nessus), AppScan, WebInspect, Powershell Empire
-Fluent in Japanese
-OSCP/E or GIAC GPEN, GWAPT, GXPN or similar preferred
-English language (basic to advanced)
-Operating systems administration and internals (Microsoft Windows / Linux)
-Understanding of TCP/IP networking at a technical level
-A Bachelor of Science degree in Computer Science, Computer Engineering, Electrical Engineering, or
a related technical field; or equivalent professional experience
-Experience with various application attack vectors, security test processes and strong knowledge of common vulnerabilities (i.e. OWASP Top 10)
-Working knowledge of SQL and high level languages
-Good technical communication skills, both written and verbal; good analytical and problem solving skills
Location- Tokyo with the ability to work remote
SecureWorks is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity and/or expression, national origin, protected veteran status, disability, genetics, or citizenship status (when otherwise legally authorized to work) and will not be discriminated against on the basis of such characteristics or any other status protected by the laws or regulations in the locations where we operate. SecureWorks encourages applicants of all ages.