Dell Consultant, IT Security in Cyberjaya, Malaysia

  • Provides leadership and proactive participation in problem solving and process design

    • Builds and leads project-based assessment teams
    • Manages team case load
    • Discovers and exploits vulnerabilities affecting Dell infrastructure.
    • Develops and maintain tools to assist in vulnerability research and exploit development.
    • Communicates information security procedures to the business.
    • Escalate issues to vendors, security team, and engineering through standard escalation processes.
    • Provide technical expertise and advice on all areas of security technology, including: network security, platform security, authentication/authorization systems, application security, security architecture, policy enforcement, and security frameworks.
    • Integrates information security controls into an environment to identify risks and reduce impact.
    • Work with technology groups to evaluate, select, install, and configure hardware/software systems to comply with established enterprise security standards and policies.
    • Participate in or work directly on, additional projects, assignments or initiatives as required.

    • Bachelor of Science in Computer Science, Computer Engineering, or Electrical Engineering or a related technical field or equivalent professional experience.

    • 7 years of Information Security experience.
    • 5 years direct or equivalent experience in areas of penetration testing, exploit development, vulnerability research and fuzzing.
    • In-depth knowledge and experience with Windows Operating Systems Internals (Kernel, Registry, File system, Windows APIs).
    • Knowledge of Windows development (C/C /C#) user mode and kernel mode applications.
    • Competency with any of the following tools: User and kernel-mode debuggers (WinDbg, OllyDbg/Immunity Debugger), IDA Pro, Hex-Rays, Visual Studio, Driver Verifier
    • Experience performing host, network, and web application penetration tests
    • Scripting experience with the ability to develop custom scripts, exploits, and tools
    • Experience with common penetration testing tools
    • Experience developing detailed penetration testing reports that can speak to multiple audience types
    • Experienced programming using x86/x64 assembly C, C , and Python (or a comparable scripting language).
    • Familiar with the Metasploit framework.
    • Source code review for control flow and security flaws.
    • Have published security research or security bug.
    • Possess excellent communication skills in English, both written and verbal.
    • Excellent problem solving skills with the ability to diagnose and troubleshoot technical issues.
    • Customer-oriented with a strong interest in customer satisfaction.
    • Active Cyber Certifications, including GIAC Penetration Tester (GPEN), GIAC Exploit Researcher and Advanced Penetration Tester (GXPN), Offensive Security Certified Professional (OSCP), Offensive Security Certified Expert (OSCE)

Job: *IT Security

Organization: *Security

Title: Consultant, IT Security

Location: AP-MY-Cyberjaya

Requisition ID: 17000OGZ