| Job Title: |
|
IT Security Penetration Tester |
| Job For: |
|
Student/Alumni |
| Total Positions: |
|
2 |
| Job Location: |
|
Islamabad,Rawalpindi |
| Gender: |
|
Both |
| Minimum Education: |
|
Bachelors |
| Degree Title: |
|
MS / BS in Information Technology/ Information Security/ Computer Sciences |
| Career Level: |
|
Officer |
| Minimum Experience: |
|
2 Years |
| Required Travel: |
|
Not Required |
| Apply By: |
|
Apr 18, 2014 |
| |
|
|
| |
|
|
|
|
| Job Description: |
The IT
Security Penetration Tester is responsible for scoping application and
network attack & penetration audits, and other assurance and
compliance audits. This expert finds security vulnerabilities in target
systems, networks, and applications in order to help MTBC improve their
security. By identifying which flaws can be exploited to cause business
risk, the pen tester provides crucial insights into the most pressing
issues and suggests how to prioritize security resources. This
individual coordinates programs to be executed with internal and
external groups and ensures successful delivery of pen tests and audits,
in line with agreed methods and guidelines. The position is also
responsible for evaluating and advising leadership on the readiness for
the commencing of external audits, and coordinating activities related
to audits such as; document requests, evidence collection, and liaising
with the external auditors and internal departments involved in the
audits.
Essential Functions of the Job:
- Executes application and network penetration tests that will vary in level of complexity from simple to potentially complex.
- Develops detailed work plans, schedules, resource plans for recurring penetration tests.
- Summarize findings and recommended corrective measures.
- Advises leadership of the technical and business risks of identified vulnerabilities.
- Liaises with external 3rd party pen testers as required.
- Establishes and reports on metrics to gauge pen testing effectiveness, progress and key risk areas identified through audits.
- Interfaces directly with management teams for coordination of evidence collection necessary for audit execution.
- Identifies risks and escalates potential project issues to management as required.
- Implement changes to procedures and systems to enhance data systems security.
- Recommends process improvement strategies.
- Monitors remediation activities.
- Provide the highest level of technical expertise and support to
clients, management and staff members in risk assessments and the
implementation of appropriate data security procedures and products.
- Identify and determine causes of security violations, and recommend corrective actions to ensure data security.
Essential Requirements: Minimum Bachelorâs degree in
Computer Science or a related discipline, or equivalent work experience;
advanced degree will be given preference.
Certification Requirements: Preferably should hold one of the following or equivalent certifications:
- GIAC Web Application Penetration Tester (GWAPT)
- GIAC Penetration Tester (GPEN), Certified Ethical Hacker (CEH)
- Certified Information Security Manager (CISM)
- Certified Information System Auditor (CISA)
- Certified Internal Auditor (CIA) or other professional certifications in related area.
|
| Company Information |
|
|
Company Name: MTBC
Company Description:
MTBC
was established in 1999. Headquartered in New Jersey, USA, it is a
dynamic and rapidly growing multinational healthcare IT Company.
Deloitte Technology Fast 500 ranked MTBC in its list of fastest growing
technology companies of North America. The Company has attained
tremendous growth in the short span of a few years, which is testament
to well-implemented, technology-based processes and which also lays the
foundations for productivity. MTBC is following a formula of long-term
growth by combining and utilizing labor force increase, investment
activity and scientific and technological progress. MTBC offers American
physicians customized solutions that reflect the very best in practice
management services available in the industry today. Our services
maximize the power of the Internet and technology to give medical
providers better control over scheduling and billing, total access to
all of their billing information, and comprehensive practice-management
reports, all the while reducing the cost factor. The organization's
management envisions reinvesting most of its earned profits mainly
towards IT, and developing various technology-based solutions that will
completely replace manual processes. MTBC operates 24/6 with a workforce
of more than 1000 employees operating in three shifts in Rawalpindi
& Bagh (AJK). The Company is providing a platform to young
professionals to learn and practice their innovative ideas in a healthy
work environment. |
|
0 comments:
Post a Comment