Sr. Ethical Hacker (RDSec) - 趨勢科技股份有限公司｜Meet.jobs

RDSec is a global team dedicating to elimination of software vulnerabilities, improvement of operational security, security of development pipelines, protection of data asset and intellectual property, and promotion of security awareness in Trend Micro.

Responsibilities:

* perform penetration test on products, services, infrastructure and operation

* create report from test findings, including security issues and risk assessment

* conduct vulnerability root cause analysis and design rectifications

* working with R&D to develop security testing methods, tools and processes

Required skills and experience:

* at least 3 years of pen-testing experience with proven record

* solid knowledge of networks and infrastructure

* solid knowledge of operating systems such as Windows, Linux and Mac

* ability to code in Python, Perl, PowerShell and Bash

* ability to write PoC code and exploits

* good knowledge about common pen-testing tools with use experience

* familiar with MITRE Att&ck framework, OWASP Top 10 and CVSS scoring

* familiar with SAST, DAST, and IAST methodology

* experience of software developer is preferable

* certificate of CEH/OSCP/OSCE/GPEN/GWAPT is a plus

* good communication in English