Cyber Security Consultant - Singapur, Singapore - Wizlynx Group

    Wizlynx Group
    Wizlynx Group Singapur, Singapore

    1 month ago

    Default job background
    Description

    About us

    Atwizlynx group, we're on a mission to fortify the digital defense of our clientsby staying one step ahead of cyber threats. As a Red Team Specialist, you'llplay a pivotal role in our cybersecurity team, focusing on emulating threatactors to assess and enhance the security of enterprise networks. Your mission:to penetrate, identify vulnerabilities, and simulate cyberattacks to strengthenour clients' defenses.

    Key Responsibilities

    Client engagements:

  • Emulate threat actor tactics, techniques, and proceduresto assess the security posture of client networks.
  • Execute red teaming exercises, striving to achievedefined objectives, such as gaining domain admin privileges, accessingsensitive information, or simulating ransomware attacks.
  • Stay updated on current threat actor groups, theirtactics, and tools to replicate them effectively during client engagements.
  • Demonstrate exceptional technical expertise andadaptability in assimilating new knowledge.
  • Utilize your deep understanding of complex informationsystems and industry trends to identify vulnerabilities and communicatefindings to the engagement team and client management through written reportsand verbal presentations.
  • People development:

  • Contribute to people-related initiatives, includingcoaching, recruiting, training, and staff retention.
  • Foster a culture of continuous learning by maintaining aneducational program to develop your personal skills and those of your team.
  • Adhere to workplace policies and procedures,setting a positive example for your colleagues
  • Qualifications and attributes

    Desired qualification include:

  • A bachelor or master's degree in Information Systems,Computer Science, Engineering, or related fields
  • 3+ years of recent experience in offensive security,including internal and external penetration testing, Red Teaming, and socialengineering
  • Possession of certifications such as OSEP, GXPN, CRTO,etc.
  • Proven ability to work independently or within large,complex projects delivering offensive cyber security services.
  • Proficiency in developing, extending, or modifyingexploits and offensive security tools, as well as operational experience inexploitation, lateral movement, and persistence on Windows and Linux systems.
  • Experience bypassing preventative and detective endpointand network security controls, using C2 frameworks like Cobalt Strike andMetasploit, and leveraging common offensive security tools (e.g., nmap,CrackMapExec, Impacket, Responder, etc.).
  • Strong OSINT collection and organization skills, bothmanual and automated.
  • In-depth knowledge of modern offensive security tools andframeworks, including Bloodhound, nmap, and Impacket.
  • Familiarity with the Cyber Kill Chain and the MITREATT&CK Framework.
  • Coding skills, in any of the following languages: C#,Python, C++, Go, PowerShell, ASP.NET.
  • Excellent knowledge of local Red & Purple Teamingframeworks and guidelines such as iCAST, TIBER-EU, ABS' Red Team Guidelines,etc.
  • Advanced understanding of Windows and Unix operatingsystems internals
  • Exceptional interpersonal, written, verbal,communication, and presentation skills.
  • Proven experience in conducting penetration tests and redteam assessments.
  • Strong analytical skills and proficiency in dataanalytics methods.
  • Demonstrated leadership abilities.
  • Language Skills:

  • Excellentcommunication skills in English (written and spoken), other languages such asMandarin is an advantage