12 days ago
Senior Penetration Tester
Lensa
Hybrid
Full Time
RON 180,000
Hybrid
Job Overview
Job TitleSenior Penetration Tester
Job TypeFull Time
CategoryCommerce
Experience5 Years
DegreeMaster
Offered SalaryRON 180,000
LocationHybrid
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
Overview of the Senior Penetration Tester Role at NTT DATA
NTT DATA is actively expanding its internal cybersecurity capabilities and is looking for a Senior Penetration Tester to join the Office of Information Security, a vital part of their Global Functions team. This role, based in Romania, is integral to the Attack & Hunt team, focusing on proactive vulnerability identification, simulating real-world attack scenarios, and supporting threat detection and response. The Senior Penetration Tester will be crucial in fortifying NTT DATA's internal security posture by employing advanced tools, techniques, and methodologies to assess and enhance the resilience of enterprise systems and infrastructure.
Key Responsibilities
- Perform comprehensive network penetration, web application testing, source code reviews, threat analysis, and social-engineering assessments.
- Develop custom scripts, tools, or methodologies to significantly enhance NTT DATA, Inc's Purple Team and Security Operations capabilities.
- Actively monitor open-source intelligence feeds for any information relevant to NTT DATA.
- Develop detailed threat models to identify potential risks.
- Thoroughly document all techniques, tactics, and proofs of concept utilized during security testing and red team exercises.
- Produce comprehensive and accurate reports and presentations tailored for both technical and executive audiences.
Basic Qualifications
- 5+ years of hands-on experience in penetration testing across various domains including web applications, APIs, containers, networks, operating systems, databases, and cloud platforms.
- Demonstrated strong experience in technical writing and the production of detailed security reports.
- Deep understanding of offensive security operations and secure development practices.
- Familiarity with industry standards and frameworks such as OWASP Top 10, NIST, CIS, MITRE ATT&CK, and various threat actor methodologies.
- Proficiency in scripting languages including Python, PowerShell, Ruby, and Bash.
- Experience with advanced exploit development and evasion techniques.
- Skilled in using penetration testing tools such as Kali, Metasploit, Nessus, Nuclei, Nmap, Burp Suite, PowerSploit, and Impacket.
- Flexible, analytical, and adaptable; while a degree or certifications (OSCP, OSEP, etc.) are preferred, they are not strictly required.
Preferred Skills
- Proven ability to work independently and efficiently manage multiple remote projects.
- Strong collaboration and stakeholder engagement skills.
- A creative thinker with a passion for innovation and continuous learning in the cybersecurity field.
- Skilled in post-compromise techniques and lateral movement strategies.
- Deep understanding of security frameworks like OWASP, PTES, and NIST SP 800-115.
- Proficient in using tools such as Metasploit, Burp Suite, Nmap, and Wireshark.
- Solid knowledge of operating systems, network protocols, and application security.
- Experienced in assessing web applications, databases, and general infrastructure security.
- Excellent analytical, reporting, and communication skills.
- Committed to ethical conduct, confidentiality, and data privacy.
Key skills/competency
- Penetration Testing
- Web Application Security
- Network Security
- Offensive Security
- Exploit Development
- Cloud Security
- Threat Modeling
- Security Reporting
- Python/Scripting
- OWASP/NIST
How to Get Hired at Lensa
- Research NTT DATA's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor to align your application with their inclusive and innovative environment.
- Showcase deep penetration testing expertise: Customize your resume to highlight 5+ years of experience across web apps, networks, cloud, and APIs, emphasizing your proficiency in offensive security operations.
- Detail your technical toolkit: Emphasize your command of scripting languages like Python and tools such as Metasploit, Burp Suite, and Kali, providing concrete examples of their application.
- Prepare for a comprehensive technical interview: Be ready to discuss advanced exploit development, evasion techniques, and your understanding of frameworks like OWASP, NIST, and MITRE ATT&CK with specific examples.
- Highlight remote project management skills: Since this is a remote role, demonstrate your proven ability to work independently and manage multiple projects effectively in a distributed team setting.
Frequently Asked Questions
Find answers to common questions about this job opportunity
01What kind of impact can a Senior Penetration Tester expect within NTT DATA's Global Functions team?
02What specific tools and frameworks are essential for a Senior Penetration Tester at NTT DATA?
03How does NTT DATA support professional growth for its Senior Penetration Testers?
04What are the expectations for technical writing and reporting in this Senior Penetration Tester role at NTT DATA?
05Given the remote nature of the Senior Penetration Tester position, what collaboration tools and practices does NTT DATA utilize?
Explore similar opportunities that match your background