Penetration Testing Consultant

Vantage Point (VP) helps its customers to secure their business-critical applications by building security into the Software Development Life Cycle (SDLC) and executes technical assessments to verify the implemented security controls.

Role Purpose: 

To evaluate the security of an organisation's IT infrastructure by continuously assessing and exploiting vulnerabilities to alert our clients to potential technical risk and impact.

Role Outcomes:

Applications and infrastructure are comprehensively assessed ensuring all vulnerabilities are identified and reported.
The consultant and client have full understanding of all the vulnerabilities identified and how to resolve or mitigate the issue.
Penetration testing methodologies and experiences are shared to enhance team performance.

Role Responsibilities:

​Prepare for the penetration test by reviewing the project scoping document and identifying what tests will be required for the environment that needs to be tested.
Conduct application and infrastructure security assessments to identify security discrepancies and non-compliance to regulatory requirements.
Utilise manual testing, automated application vulnerability scanning / testing tools and source code review techniques.
Generate a report for the client detailing the vulnerabilities and provide a score using the Common Vulnerability Scoring System (CVSS).
Keep up to date with the latest penetration testing techniques, methods and general technology advancements.
Initiating or supporting internal research projects.

Required Skills and Experience:

​Unrelenting passion to discover vulnerabilities in cutting edge technologies.
Basic security knowledge in one of the following domains: iOS or Android applications, Web applications.
Experience using standard web application testing tools.
Basic understanding of programming languages.
Ability to explain findings to non-technical professionals
Experience in doing customer presentations
Able to work independently but also develop strong working relationships with the team

Desired Skills and Experience:

​Bug Bounty/ Hall of fame participan.
Published white papers/ advisories or speaking engagements at security conferences.

Role Information:

Reports to:        Managing Principal
Hours:               Full Time (40 hours)
Language:         Must be proficient in spoken and written English.
Location:           Primarily based in our Singapore office or at our client’ sites, but may be required to travel occasionally to our other business locations.

You will be rewarded with a competitive salary and bonus and an opportunity to be part of an exciting growing business.

 

To apply for this role please send your CV to: recruitment@vantagepoint.sg stating which job you would like to apply for and where you saw the vacancy advertised.

 


Penetration Testing Senior Consultant

Vantage Point (VP) helps its customers to secure their business-critical applications by building security into the Software Development Life Cycle (SDLC) and executes technical assessments to verify the implemented security controls.

Role Purpose: 

To evaluate the security of an organisation's IT infrastructure by continuously assessing and exploiting vulnerabilities to alert our clients to potential technical risk and impact.

Role Outcomes:

Competently deliver pre-sales activities such as project scoping, quoting and attending client engagement meetings when required.
Applications and infrastructure are comprehensively assessed ensuring all vulnerabilities are identified and reported.
The consultant and client have full understanding of all the vulnerabilities identified and how to resolve or mitigate the issue.
Penetration testing methodologies and experiences are shared to enhance team performance.
On assigned larger projects act as lead consultant providing one interface with the client with efficient management of consultant resource to complete the project on time.
When acting as a lead consultant, effectively delegate workload to ensure the project is completed on time.

Role Responsibilities:

Project Delivery:

Work with customers and internal stakeholders to comprehensively scope work.
Delivery of PT services for clients inclusive of scope review, testing, consultation and reporting.
Utilisation of code reviews to improve testing outcomes
Keep up to date with the latest testing and hacking methods and technology advancements.

Lead Consultant on assigned projects:

All communication between client and consultants to go through lead consultant.
On receipt of project scope, engage with client and consultants, set expectations for ways of working, communication and escalation process.
Receive and resolve all escalations from consultants and client.
Maintain oversite of all issues arising from the project and support junior consultants in resolving issues.
Keep consultants and clients updated on progress of project.
Report internally to project manager on any project delays.

Peer Support:

Review consultant reports providing feedback on technical content and guidance on language and presentation.
Provide advice and guidance on technical queries.
Actively share knowledge on findings or research to support peer development.
Initiating or supporting internal research projects.

Required Skills and Experience:

Active Bug Bounty/ Hall of fame participant
Published white papers/ advisories or speaking engagements at security conferences
Experience with security touch points in the SDLC such as architecture risk analysis, threat modelling, security requirement gathering.
CRT Qualified 
Experience
Consulting with clients to confidently manage client expectations and any issues that may arise

Desired Experience:

​Ability to provide constructive feedback to peers to support their development
CCT Certification

Role Information:

Reports to:  Managing Principal
Hours:               Full Time (40 hours)
Language:         Must be proficient in spoken and written English.
Location:           Primarily based in our Singapore office or at our client’ sites, but may be required to travel occasionally to our other business locations.

You will be rewarded with a competitive salary and bonus and an opportunity to be part of an exciting growing business.

 To apply for this role please send your CV to: recruitment@vantagepoint.sg stating which job you would like to apply for and where you saw the vacancy advertised.

Systems Administrator

Vantage Point (VP) helps its customers to secure their business-critical applications by building security into the Software Development Life Cycle (SDLC) and executes technical assessments to verify the implemented security controls.

Role Purpose: 

Managing the IT infrastructure for Vantage Point to establish consistency and best practice to enable the business to run more efficiently.

Role Outcomes:

An automated on-boarding procedure for new employees in respect of systems and technology.
A central logging and management service that monitors our network, clients and server.
A consolidated authentication scheme for internal services by using Microsoft AD.
An effective and operational company backup strategy.
All IT processes are documented in clear SOP’s for all processes.
Network is fit for purpose for continued business growth and appropriate plans are in place to facilitate this.An automated on-boarding procedure for new employees in respect of systems and technology.
A central logging and management service that monitors our network, clients and server.
A consolidated authentication scheme for internal services by using Microsoft AD.
An effective and operational company backup strategy.
All IT processes are documented in clear SOP’s for all processes.
Network is fit for purpose for continued business growth and appropriate plans are in place to facilitate this.

Required Skills and Experience:

​Administration of AWS (Instances, Networking etc.)
Administration of Windows and Ubuntu Servers
Basic scripting experience (Shell, Python etc.)
Office 365 administration
Windows AD

Desired Skills and Experience

​Infrastructure as code (Ansible)
OpenVPN
Wordpress

Role Information:

Reports to:        Managing Principal
Hours:               Part Time
Language:         Must be proficient in spoken and written English
Location:           Singapore
Bonus:               13th Month

To apply for this role please send your CV to: recruitment@vantagepoint.sg stating which job you would like to apply for and where you saw the vacancy advertised.