חיפוש

Experienced Penetration Tester with Expertise in IOT

Experienced Penetration Tester with Expertise in IOT

As a Pentester with expertise in IoT security, you will play a crucial role in identifying and addressing potential vulnerabilities in pentesting IoT projects and medical devices.
The ideal candidate will have a minimum of 2 years of hands-on experience in penetration testing and a background in pentesting IoT devices.

Job Description:

  1. Conduct comprehensive penetration tests on different types of system and technologies, with a specific emphasis on IoT devices.
  2. Identify and exploit security vulnerabilities on thick client/mobile applications and also on products like IoT or medical devices.
  3. Assess the security of embedded systems, firmware, and IoT protocols.
  4. Provide detailed reports and recommendations for mitigating identified risks, especially in the IoT context.
  5. Stay up-to-date with the latest cybersecurity trends and threat landscapes, particularly in the rapidly evolving IoT domain

Job Requirements:

  • Minimum of 2 years of proven experience in penetration testing (Web, Mobile, Thick Client).
  • Minimum of 1 year of Reverse engineering, using tools like IDA, Ghidra, Qemu.
  • In-depth knowledge of IoT security protocols, standards, and best practices.
  • Hands-on experience with Penetration testing on IoT devices, including embedded systems and firmware.
  • Familiarity with common IoT communication hardware protocols (e.g., SPI, UART) and Radio Frequencies (e.g. WiFi, BLE, Zigbee).
  • Understanding of hardware security considerations in IoT devices.
  • Knowledge of IoT-specific vulnerabilities and attack vectors.

Experienced Penetration Tester at Advanced Security Center

Experienced Penetration Tester at Advanced Security Center

Who Are We?

EY Advanced Security Center is a global leader in information security services. As part of Ernst & Young's worldwide network, we are in Tel Aviv. EY has been home to some of the world's best security consultants for over 15 years, creating tangible business value for our clients through their technical expertise. Among our clients, you will find governments, countries, financial institutions, utility companies, blue-chip firms, and many others.
Our employees are at the forefront of the information security field, with best practices in penetration testing, thorough research, homegrown tools, and more.

Job Description:

  • The work involves simulating attack scenarios against various applications, infrastructure, and network solutions on a wide range of platforms and technologies. In addition to penetration testing and forensic services, we also offer consulting services, secure design and development services, and training.
  • We provide an extensive training program that enables programmers, infrastructure, and network engineers to transition into the security profession and develop a long-lasting career path.

Job Requirements:

  • At least 2 years of experience in information security as a Penetration Tester.
  • Bright, creative, highly motivated individuals with strong self-learning skills.
  • A team-player, effective communicators with excellent interpersonal relation.
  • Excellent written and verbal skills in English.
  • In-depth knowledge of networking and internet protocols.
  • Practical background in:
  • HTTP, HTML, XML, JavaScript, and other client-side languages.
  • Web application and API penetration testing.
  • Proficiency in OWASP top 10 vulnerabilities.
  • Android and IOS application penetration testing
  • Technologies such as Android/IOS OS, JAVA/Objective-C or Swift, .NET, PHP, SQL, C++, Node.JS, or Angular
  • Blue Team and incident response
דילוג לתוכן