Description
Cyber Security Penetration Tester - Belgium
The profile of the contractor shall meet the following mandatory requirements:
1. Last 3-4 years as a Full time penetration tester;
2. Hands-on experience in script development related to penetration testing activities;
3. Experience in testing cryptographic implementations;
4. Up to date with the latest penetration testing tools and technologies;
5. Ability to conduct penetration testing techniques, exploitation and post-exploitation;
6. Ability to define and scope penetration testing requirements;
7. Strong knowledge in Web application penetration testing;
8. Strong knowledge in Network penetration testing;
9. Source Code assessment skills in multiple language such as c, c#, PHP, ASP, Java, ;
10. Teamwork and adaptability;
11. High integrity & work ethics;
12. Communication;
The profile of the contractor should also meet the following desirable requirements:
1. Certified CHECK team member/leader or equivalent (Crest or TIGER or SANS GPEN or GXPN);
2. Published security research/vulnerabilities (possibly with CVE attribution) or winner of CTF/bug bounty programs;
3. Tools Development (Shell Scripting, Python, Ruby, etc)
4. Social Engineering skills;
5. Exploit development experience and ability to defeat protection mechanisms;
The Client is mainly concerned with Web Application Penetration Testing
- SQL injection
- DOM based XSS
- Analysing client side application (Java Applet/Silverlight apps)
- XXE
- CSRF
- XSS
A Personal Security Clearance (PSC) at least to the level of NATO SECRET or UK Security Clearance to SC level or above is a mandatory requirement for this role