Analyst/Senior Analyst – Penetration Testing

Responsibilities

As a team member, you will be accountable for, but not limited to the responsibilities below.

Operational 

Penetration Testing:

• Schedule regular penetration tests on company networks, applications, and systems to identify vulnerabilities leveraging preferred vendor.
• Develop and execute test plans, document findings, and provide actionable remediation recommendations.
• Collaborate with IT and development teams to ensure vulnerabilities are addressed and mitigated promptly.

Data Security Protection:

• Implement and maintain data protection measures, including encryption, access controls, and data loss prevention strategies.
• Monitor and analyze security alerts and logs to detect and respond to security incidents.
• Conduct risk assessments and security audits to ensure compliance with industry standards and regulations.

Cyber Awareness Training Programs:

• Develop and deliver cybersecurity awareness training programs for employees at all levels of the organization.
• Create engaging training materials, including presentations, workshops, and e-learning modules.
• Evaluate the effectiveness of training programs and update content regularly to address new threats and best practices.

Skills: 

• Professional certifications such as CEH (Certified Ethical Hacker), CISSP (Certified Information Systems Security Professional), or equivalent are highly desirable.
• Familiarity with common tools (e.g., Metasploit, Nmap) and methodologies (e.g., OWASP).
• Understanding of network protocols, firewalls, and common web application vulnerabilities (e.g., SQL injection, XSS).
• Ability to assess vulnerabilities, manage risks, and coordinate incident response activities.
• Strong knowledge of cybersecurity frameworks, standards, and best practices (e.g., NIST, ISO 27001).
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and as part of a team.
• Ability to manage multiple projects and priorities in a fast-paced environment.

Education: Bachelor’s Degree.

Experience: 3-4 years of experience in cybersecurity, with a focus on penetration testing, data security, and cyber awareness training.