Deskripsi Pekerjaan
Are you a passionate cybersecurity professional looking to elevate your career with a leading industry player? Trends Group, Inc. is seeking a detail-oriented VAPT Engineer to join our RTC (Real-Time Cybersecurity) team in Makati City. In this role, you will be at the forefront of our defense strategies, ensuring our infrastructure remains resilient against evolving digital threats.
As a VAPT Engineer, you will conduct rigorous vulnerability assessments and penetration testing to identify security gaps before they can be exploited. You will work within a collaborative, fast-paced environment that values continuous learning and technical excellence. This is an ideal role for an analyst who thrives on problem-solving, digital forensics, and proactive incident response. Join us to help secure our organization's future while advancing your expertise in cutting-edge security technologies.
Tanggung Jawab
- Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) on web applications, networks, and cloud infrastructures.
- Analyze security scan results to identify, prioritize, and remediate vulnerabilities based on severity and business impact.
- Execute incident response protocols to contain, investigate, and remediate security breaches.
- Conduct digital forensics investigations to determine the root cause of security incidents.
- Develop and maintain comprehensive security documentation, including technical reports and remediation guidance for stakeholders.
- Stay up-to-date with the latest threat landscapes, zero-day vulnerabilities, and security industry standards.
- Collaborate with IT and development teams to implement secure coding practices and architecture improvements.
Kualifikasi
- Bachelor’s degree in Computer Science, Information Security, or a related technical field.
- Proven experience (2+ years) in vulnerability management and penetration testing tools (e.g., Burp Suite, Metasploit, Nessus, Nmap).
- Strong understanding of OWASP Top 10, common attack vectors, and network security protocols.
- Proficiency in scripting languages such as Python, Bash, or PowerShell for security automation.
- Working knowledge of digital forensics methodologies and incident response frameworks (NIST, SANS).
- Relevant industry certifications such as OSCP, CEH, CompTIA Security+, or GCIH are highly preferred.
- Strong analytical mindset with excellent verbal and written communication skills.