Technical Security Testing

؜ - ؜الجيزة ؜ -

تفاصيل الوظيفة

About the job Technical Security Testing
Purpose of the job
Evaluate the security controls for Orange EGs Internal and External systems
and Identify new vulnerabilities and exploits that can jeopardize the
Integrity, Confidentiality and availability of our Information Systems.
Duties and responsibilities
* Perform initial penetration testing for newly acquired/developed systems.
* Identify security issues and vulnerabilities that can jeopardize the confidentiality/Integrity/Availability of information systems.
* Perform network penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessment, & social engineering assessments.
* Develop scripts, tools and methodologies to enhance red teaming processes
* Programming skills supporting tool development and customization (shell scripting, Perl, Python, Ruby, C, C++, C#, Java)
* Recognize and safely utilize attackers tools, tactics and procedures.
* Exhibit strong knowledge of tools used for wireless, web application, mobile application and Infrastructure penetration testing.
* Provide technical advise to system/business owners and/or developers on how to mitigate the identified issues.
* Propose compensating controls to mitigate/reduce risks where resolving the root cause is not possible.
* Provide guidance to application developers on secure coding best practices.
* Insure Orange EG's information systems are properly hardened, including but not limited to operating systems, databases, web servers, and application servers.
* Provide advise to system administrators on how to harden their systems.
* Perform telecom specific security testing to insure the security of our access, core and packet core networks. Identify and resolve any discovered issues.
* Perform periodic penetration testing against Orange EG's critical systems to address any new security issues.
* Run periodic vulnerability scans against Orange EG's systems, and insure the findings are addressed in a timely manner according to the asset's criticality and the risk
* Run on demand scans for newly announced vulnerabilities and address those vulnerabilities with their owner
* Provide executive and detailed technical reports on findings to be used as an input in the risk management process
* Thorough understanding of different network protocols, application frameworks, and database platforms
* Mastery of Unix/Linux/Mac/ Windows operating systems including bash and PowerShell
* Perform assessments against internal and external security standards including but not limited to PCI-DSS, SOX, ISO-‎27001, and Orange Global Security Policy
* Map business objectives and strategies to identify testing objectives and establish a business oriented risk level.
* Determine needed tools and budget to enhance security testing process.
* Supervise and guide Pen testing team activities
* Ability to define and scope penetration testing requirements
* Ability to document and communicate vulnerabilities and associated security risks with the stakeholders
Job specification
Education
* University degree in Telecommunication, Information Technology or Computer Science.
* Fluently reading and writing in English language..
* Certifications such as GPEN, GCIH, OSCP, OSCE, GWAPT, GAWN and/or GMOB is a must
Experience
* ‎4-‎7 years experience in at least three of the following:
* Network Penetration testing
* Mobile and/or web application assessment
* Social Engineering assessment
* Shell scripting and automation of simple tasks using Perl, python, ruby and/or PowerShell
* Developing, extending or modifying exploits, shellcodes, or exploit tools
Source code review for control flow and security flaws
* Familiarity with the Telecom industry and its security posture
Skills and abilities
* Executive Presence, Highly effective communicator, well established influencing and negotiating skills
* Strong analytical skills; able to quickly digest any issue encountered and recommend an appropriate solution
* Strong client service orientation
* Self motivated without the need for significant management oversight
* Dynamic team player
* Ability to deal with ambiguity and make expert judgement in the situations where no precedent exists
* Excellent verbal and written communication skills including the ability to author and present materials ranging from detailed technical specifications tp high level presentations
* Strong understanding of the roles impact on the entire company.
* Ability to maintain a steady work pace with high level of accuracy.
* Must possess a strong sense of ethics and integrity with respect to identified critical security findings (Revenue/Image Impacting)

ملخص الوظيفة

  • المُعلن : اورنچ مصر
  • تاريخ الإعلان : 14/05/2023
  • نوع العمل : -
  • مستوى الخبرة : -
  • المستوى التعليمي : -
  • مكان العمل : الجيزة
  • الراتب : -
  • الهاتف : -

وظائف أخرى مثل هذه الوظيفة

الجيزة
14/05/2023

About the job Technical Security Engineering, Advisor **Purpose of the job** Lead the activities of Design, Implement and Continuous Improvement of the Security Controls for Orange EG Products & Services, and Insure the Confidentiality, Integrity & Availability of Orange EG Critical Systems. **Duti…

الجيزة
14/09/2023

## **Job Description** As the **Security Country Manager** you will support all security and fire protection activities for General Motors to identify risk and implement protective measures to reduce identified risks. You will coach and consult with security operations personnel and business unit a…

الجيزة
17/05/2022

**Job Code:** Security * 2-5 years' experience * Medical Background is preferred If you are interested and matching the required qualifications, kindly send your CV to the e-mail

الجيزة
30/04/2022

* Monitor entrance and departure of employees & visitors * Call police or fire departments in cases of emergency * Warn persons of rule infractions or violations **Qualifications:** * Any relevant diploma degree. * Ability to handle complains. * Ability to work under pressure

الكويت,
07/06/2022

Qualification / experience -Minimum 5 years of experience in Firewall technologies. -Should be able to install, configure, and troubleshoot security devices. -experience in Networking, Routing, and Switching. -Hands-on experience in products like Fortinet, Sophos and Sonicwall. -Excellent communica…

الكويت,
07/03/2023

Security and IT Technical Support Engineer Tasks: \- Network administration and configuration of switches, routers, and access points \- PC and Server configuration and installation of Microsoft Windows Server. \- IP CCTV and Access Control systems experience are a great asset. Fresh engineering a…

الجيزة
18/11/2023

**Job Code:** Security 2-5 years of experience خبرة 2-5 سنوات Medical Background is preferred يفضل الخبرة في نفس المجال If you are interested and matching the required qualifications, apply NOW إذا كنت مهتم و حاصل علي المؤهلات المطلوبة سجل الأن

الجيزة
27/10/2022

About NCR NCR Corporation (NYSE: NCR) is a leading software- and services-led enterprise provider in the financial, retail and hospitality industries. NCR is headquartered in Atlanta, Georgia, with 36,000 employees globally. NCR is a trademark of NCR Corporation in the United States and other count…

الجيزة
14/11/2022

**Responsibilities** ي : * الإبلاغ عن أي مخالفات أمنية أو سرقة أوتخريب أواعتداء و التعامل الفوري والتأكد من توفير الدعم الفوري من أفراد الامن لاحتواء الموقف و ابلاغ مديره المباشر و غرفه العمليات الرئيسيه بالاداره العامه . * مراقبة الانشطة التي تتعلق بالإنتاج و الامداد و البيع و جميع الإدا…

الجيزة
24/10/2023

About the job Information Security Specialist **Purpose of the Job** Operating the global security management system on the required scope of activities and services to ensure effective handling of information security risks in compliance with ISMS framework and group directions **Duties and Respon…

Language: English