Proximus's security services have been recognized by the Market three times over the past year: Security Awareness Initiative and Security Partner at ISdays 2017 and then 2018 as well as Security Provider of the Year 2017 at ITone awards.
With its 70 employees dedicated to advising clients on security issues, its global approach based on business risks, its extensive involvement in the Luxembourg cybersecurity ecosystem and its center cyber defense available 24/7, Telindus is seeking to expand its activities in the field.
Description of function:
Within the cybersecurity department, and more specifically the Ethical Hacking pole with several dedicated, experienced and certified consultants with more than 30 cumulative certifications (GIAC and OSSTMM), you will support, secure and protect the digital transformation of our customers by positioning yourself on the side of attackers in order to challenge the level of security of infrastructures and services in order to improve the level of security and reduce the levels of risk.
Your main responsibilities will be as follows:
- Carrying out and managing penetration testing missions in the form of a Red-Team or audits according to a methodology described for our internal and external customers
- Proposal of remedies based on the findings of the tests carried out
- Presentation of the results of your projects to customers (technical audience but also management or top-management)
- Maintenance and evolution of lab and production environments
- Optimization of the team's tools by adding or developing new features and services
- Realization of technological watches of threats, attacks and remediation and implementation of these watches in services in order to protect our customers
- Optimization of internal departmental processes
- Think like an ethical hacker in order to better counter them to protect our customers
Profile:
Required profile:
- At least 3 years experience in three or more of the following types of penetration tests:
- Application tests (OWASP, WebApp, API, etc.)
- Network tests (OSSTMM, etc.)
- Remote access (Citrix, ...)
- Wireless VoIP Mobile application (Android, iOS, ...)
- Back Social engineering
- Red Team
- Passion, Curiosity and Creativity
- Possess up-to-date certifications such as GIAC, CEH, Offensive Security, OSSTMM, being considered an asset
- Ease of oral and written expression, interpersonal skills
- Ease of working in a team and open-mindedness
- Flexibility
- Organization, rigor, spirit of synthesis
- Fluent in French and English, Luxembourgish and German being a great advantage