工作描述
16 天前
We are seeking Cyber simulated attack managers to join our Cyber Defence team. Our team delivers both strategy and implementation. We have a strong focus on serving our clients' needs and our industries. We strive to become a responsible corporate citizen that has a positive impact on our environment and community.
Cyber Security Benefits
• Cyber security as a business enabler, not just an IT issue
Key Responsibilities
• Lead various cyber-attack simulation projects using red team / blue team / purple team exercises
• Conduct social engineering and email phishing attacks to simulate the theft of passwords, infiltrate systems, and download malware / ransomware
• Lead advanced security assessment and infrastructure penetration tests on different complex platforms and emerging technologies
• Report testing results to senior stakeholders, Board and Audit Committee
• Develop proposal, project scoping, and the review of deliverables
• Drive continuously improvement in security assessment methodologies
• Develop marketing and training materials to help develop staff awareness within the company and communicate KPMG's capabilities to clients
Requirements
• Bachelor's degree in computer science, Information Technology, or related field
• At least one professionally qualification required: CREST Certified Simulated Attack Manager, GXPN, OSCE3, OSEE or other relevant qualifications
• Minimum of 5 years of experience working in Red Teaming, Purple Teaming, simulation attack, iCAST, Web/Mobile/Network/OT/IoT/other Penetration Tests, Vulnerability Assessment, Source Code Review, Appliance/System/Cloud Configuration Review, Malware development, Social Engineering
• Strong knowledge in threat intelligence, reverse engineering, security products, incident response, SOC operation or other related areas
• Delivered projects in accordance with industry recognised testing standards and experience in common red teaming tools
• Strong knowledge base in enterprise technologies and operations, enterprise networking, internet application security, database security evaluation and architecture, with self-motivated learning ability
• Be able to lead a team
• Have strong analytical, problem solving and inter -personal skills
• Commands excellent written and oral communication skills with the ability to present ideas and results to technical and non-technical audiences
• Excellent written and verbal communication skills in English and Chinese (Mandarin or Cantonese)
Cyber Security Benefits
• Cyber security as a business enabler, not just an IT issue
Key Responsibilities
• Lead various cyber-attack simulation projects using red team / blue team / purple team exercises
• Conduct social engineering and email phishing attacks to simulate the theft of passwords, infiltrate systems, and download malware / ransomware
• Lead advanced security assessment and infrastructure penetration tests on different complex platforms and emerging technologies
• Report testing results to senior stakeholders, Board and Audit Committee
• Develop proposal, project scoping, and the review of deliverables
• Drive continuously improvement in security assessment methodologies
• Develop marketing and training materials to help develop staff awareness within the company and communicate KPMG's capabilities to clients
Requirements
• Bachelor's degree in computer science, Information Technology, or related field
• At least one professionally qualification required: CREST Certified Simulated Attack Manager, GXPN, OSCE3, OSEE or other relevant qualifications
• Minimum of 5 years of experience working in Red Teaming, Purple Teaming, simulation attack, iCAST, Web/Mobile/Network/OT/IoT/other Penetration Tests, Vulnerability Assessment, Source Code Review, Appliance/System/Cloud Configuration Review, Malware development, Social Engineering
• Strong knowledge in threat intelligence, reverse engineering, security products, incident response, SOC operation or other related areas
• Delivered projects in accordance with industry recognised testing standards and experience in common red teaming tools
• Strong knowledge base in enterprise technologies and operations, enterprise networking, internet application security, database security evaluation and architecture, with self-motivated learning ability
• Be able to lead a team
• Have strong analytical, problem solving and inter -personal skills
• Commands excellent written and oral communication skills with the ability to present ideas and results to technical and non-technical audiences
• Excellent written and verbal communication skills in English and Chinese (Mandarin or Cantonese)
更多来自 KPMG China
软件工程师
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
软件工程师
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
网络安全
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
销售和客户管理
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
网络安全
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
Fund Accountant (for client)
KPMG China
网络安全
中西区, 香港
7 天前
全职
办公室工作
技术、信息和媒体
更多类似工作
🎉 Got an interview?