Security Analyst (Penetration Test)

Empowering You – to break new ground!

As part of the global NTT DATA Group, one of the top 5 IT service providers worldwide, we specialize in value-added SAP solutions. At NTT DATA Business Solutions, our focus is SAP Consulting, SAP Development, Managed Cloud Services, and Application Management Services (AMS) & Technology. Across the globe, we support customers in their digital transformation from start to finish.

OUR RECIPE FOR SUCCESS: DIVERSITY, OPENNESS, RESPECT, AND TOGETHERNESS.

With more than 13,000 employees from 64 nations in over 29 countries, our diverse workforce reflects our values. People are and will always be vital to our mission, playing a decisive role in everything we do.

ARE YOU READY TO BREAK NEW GROUND?

Location: Malaysia

What makes us special:

■ Team-oriented corporate culture, collaboration as equals and steady knowledge transfer

■ Family-friendliness (e.g. Childcare Center, paternity and maternity)

■ Diversity & Inclusion (e.g. various initiatives & communities)

■ Flexible working hours, part-time models, mobile working - location-independent working (e.g. home office)

■ Individually tailored onboarding program including a mentoring program and sustainable career support with our career model

■ Inhouse Academy with a variety of professional technical training, soft skills training, SAP Learning Hub and certification opportunities

■ Company health benefits (e.g. Medical Insurance, Health Insurance, Optical and Dental Benefits)

Do you love challenges?

■ Minimum of two years professional experience in penetration testing. • Familiar with Penetration Testing Methodologies such as OSSTMM, OWASP, NIST, PTES

■ Know-how in manual techniques for penetration testing (network equipment, servers, web applications, APIs, wireless, mobile, databases, and other information systems)

■ Professional experience testing web applications for common web application security vulnerabilities as defined by OWASP, including input validation vulnerabilities, broken access controls, session management vulnerabilities, cross-site scripting issues, SQL injection and web server configuration issues.

■ Tools – Proxies, Port Scanners, Vulnerability Scanners, Exploit Frameworks (ex: Burp, Nessus, Nmap, Metasploit)

■ Strong understanding of network and systems especially Windows Server and Linux OS.

■ Knowledge in security solutions such firewalls, IDS/IPS, NAC, DLP, WAF, and anti-DDoS, SIEM, EDR/XDR, OS hardening and so on.

■ Solid understanding of security protocols and cryptography

■ Knowledge in scripting (any language – Python, Shell, etc) is an added advantage

■ Knowledge or exposure in Red teaming an added advantage

■ Knowledge in digital forensics and threat hunting an added advantage

Convince us with your potential!
 

■ As a senior-level analyst, you are expected to be a subject matter expert, threat hunter, and incident responder.

■ Major duties will be focus on vulnerability assessment and pen-testing activity.

■ Reviewing alerts, industry news, threat intelligence, and security data, actively hunting for threats that have found their way into our environment and performing assessments or penetration tests to discover vulnerabilities and security gaps.

■ Daily BAU activity includes applications and OS patching, plan pentesting activity, handling of Security Operation related tickets and escalations.

■ Participate in projects and deployment of security related devices/application.

■ Perform OS hardening based on CIS benchmark or security checklist provided

■ Participate in or work directly on, additional projects, assignments, or initiatives as required.

Any questions?

We look forward to receiving your complete application documents stating your earliest start date.

Get empowered by NTT DATA Business Solutions!

 Norshafina Zainuddin  

E-Mail: Norshafina.Zainuddin@nttdata.com 

We transform. SAP® solutions into Value