RedTeam Senior Executive (JR0021444)

Jawatan Kosong RedTeam Senior Executive (JR0021444) di [SYARIKAT]

KETERANGAN JAWATAN KOSONG

This position will report directly to the Manager, Information Security Testing. This role will be responsible for Red Team planning and reconnaissance assignment toward Capital A’s organization network and environment. The candidate will provide planning, consultation, and awareness of the Group Information Security requirements to technical teams and other employees, and ensure its implementation.

In summary, in this role you will drive, deliver and further develop our red team operations portfolio. You will translate TTP’s into new approaches, tools & content. You will be a trusted adviser for helping us defend against advanced motivated attackers. All in all, you will be involving in all main Red Team operation assignments. 

Job Description:

You are an experienced professional, working in this specific domain for over 3 years. Working in a red team does not contain any secrets for you, and your current colleagues often come to you when they encounter a problem.  

• Planning and working on RedTeam Exercises assignment
• Identify, communicate, and manage current and emerging security threats with relevant stakeholders.
• To manage end-to-end information security incidents with the assistance of incident management teams.
• Performing reconnaissance of organization networks, hosts and applications.
• Automate attack techniques, creating custom tooling for specific operations
• Consumable identified vulnerabilities and findings detailed reports covering the goals and outcomes of Red Team operations, including significant observations and recommendations
• Working with various business, technology, and stakeholders to identify security risk and issue
• Collaborate with Information Security Operation to improve detection and response capabilities.
• Collaborate with non-technical teams to propose process and policy enhancements and additions.
• Stay informed on current security trends, advisories, publications, and academic research that is relevant our organization.

Requirements:

• Bachelor’s Degree in Information Technology, or Business with IT, Computer Science, or equivalent
• 3+ years of penetration skills, exploitation and reconnaissance and experience using multiple penetration tools.
• Relevant industry certification is an advantage (SANS, CISA, CISSP, CGEIT, etc)
• Strong analytical and critical thinking skills to performing findings and verifications.
• Understanding of the MITRE ATT&CK framework
• Intermediate knowledge of exploit techniques, and common TTPs
• Intermediate knowledge of one or more programming or scripting languages
• Basic hands-on experience with at least one of the major cloud providers (GCP, AWS, Azure) Strong project management skills, with experience in collaborating with different business functions and key stakeholders.
• Strong communication skills, with experience in involving technical and business counterparts, coordinating multiple stakeholders, and reporting
• Working knowledge of local information and cybersecurity-related regulations and requirements is a huge advantage
• Ability to develop, review and maintain documentation in a timely manner
• Result-oriented, high level of attention to detail, self-starter and motivator, ability to multitask and adjust to shifting priorities.

Furthermore, you have these skills/ capabilities:

• Deep understanding of attacker’s tools, tactics and procedures (TTP); 
• Apply and customize TTP’s to leverage at clients;
• Thorough understanding of detection, monitoring and IOC’s ;
• Out of the box thinker, able to come up with new solutions when others fail (eg: “try harder” attitude).

​

We are all different – one talent to another – that is how we rely on our differences. At AirAsia, you will be treated fairly and given all chances to be your best.We are committed to creating a diverse work environment and are proud to be an equal opportunity employer.

Search Firm Representatives – AirAsia does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place.

Maklumat Tambahan Jawatan Kosong

Tahap Pekerjaan : Senior Executive
Kelayakan : Computer/Information Technology, IT-Software
Pengalaman Kerja : 3 years
Jenis Kerja : Full-Time
Pengkhususan Kerja : Computer/Information Technology, IT-Software / 508, 191

Maklumat Syarikat Majikan, [SYARIKAT]

Find your career destination with AirAsia! 

It all starts here. 20 years ago, a dream took flight – shaping and forever changing the travel industry in Asia. The idea was simple – make flying affordable for everyone.

We started off as just an airline, but today we are now something much, much more. From a network of gateways and getaways, our businesses now include making logistics and banking more accessible (Teleport, BigPay), linking farms with businesses (airasia grocer), and offering online tech education and entrepreneurship (Redbeat Academy). airasia Super App, our one-stop travel, e-commerce and fintech platform, offers more than 15 lines of products — from travel to lifestyle to finance, there is something on airasia Super App for everyone.

Wait no more and visit our career page and be part of our Allstars family.

Maklumat Tambahan Syarikat [SYARIKAT]

Saiz Syarikat : More than 5000 Employees
Masa Pemprosesan Permohonan : 11 days
Industri : Aerospace / Aviation / Airline
Elaun dan Lain-lain : Dental, Education support, Medical, Loans, Sports (e.g. Gym), Vision, Regular hours, Mondays – Fridays, Casual (e.g. T-shirts), Travel benefits
Lokasi : Selangor
Lamar Sekarang!