Junior Penetration Tester

Job Description
body { margin: 0 0 0 0; padding:0 0 0 0 }
td,div { font-family:Arial;font-size:10pt;vertical-align:top }
/ Copyright IBM Corp. 2014 All Rights Reserved. /
body { margin: 0 0 0 0; padding:0 0 0 0; background-color:#fafafa; }
.grayBackground { background-color:#f6f6f6; }
.transcript { background-color:#d2d2d2;}
.messageBlock {padding-left:10px; padding-right:10px;padding-top:0}
.expansion{height:10px;width:100%;}
.expansionx{height:10px;}
.line{height:1px;background-color:#cccccc;}
.message { padding-left:0px; padding-right:65px;margin-left:0px; word-wrap:break-word; white-space:-moz-pre-wrap; _white-space:pre; white-space:pre-wrap;}
.messageCont { padding-left:20px; margin-left:95px; word-wrap:break-word; white-space:-moz-pre-wrap; _white-space:pre;white-space:pre-wrap;}
.other { font-size:11px;color:#1970b0;vertical-align:top;font-weight:bold;font-style:normal;float:left; width:95px; white-space:nowrap; }
.myself { font-size:11px;color:#222222;font-style:normal;font-weight:bold;font-style:normal;float:left; width:95px; white-space:nowrap; }
.otherCont { font-size:8px;text-align:right; color:#1970b0;font-family:Arial,Lucida Grande;font-style:normal;vertical-align:top;font-weight:bold;float:left; width:95px; }
.myselfCont { font-size:8px;text-align:right; color:#222222;font-family:Arial,Lucida Grande;font-style:normal;vertical-align:top;font-weight:bold;float:left; width:95px; }
.system { font-size:11px; word-wrap:break-word;color:#d13f08;font-style:normal;font-weight:normal; white-space:-moz-pre-wrap; _white-space:pre;white-space:pre-wrap; }
.showTimestamp { padding-left:20px;font-size:11px; float:right; color:#999999;font-style:normal;font-weight:normal; }
.other1 { font-size:11px; color:#ba006e;vertical-align:top;font-weight:bold;font-style:normal;float:left; width:95px; }
.otherCont1 { font-size:8px;text-align:right; color:#ba006e;font-family:Arial,Lucida Grande;font-style:normal;vertical-align:top;font-weight:bold;float:left; width:95px; }
.other2 { font-size:11px; color:#007670;vertical-align:top;font-weight:bold;font-style:normal;float:left; width:95px; }
.otherCont2 { font-size:8px;text-align:right; color:#007670;font-family:Arial,Lucida Grande;font-style:normal;vertical-align:top;font-weight:bold;float:left; width:95px; }
.other3 { font-size:11px; color:#3b0256;vertical-align:top;font-weight:bold;font-style:normal;float:left; width:95px; }
.otherCont3 { font-size:8px;text-align:right; color:#3b0256;font-family:Arial,Lucida Grande;font-style:normal;vertical-align:top;font-weight:bold;float:left; width:95px; }
.other4 { font-size:11px; color:#00512b;vertical-align:top;font-weight:bold;font-style:normal;float:left; width:95px; }
.otherCont4 { font-size:8px;text-align:right; color:#00512b;font-family:Arial,Lucida Grande;font-style:normal;vertical-align:top;font-weight:bold;float:left; width:95px; }
.other5 { font-size:11px; color:#a91024;vertical-align:top;font-weight:bold;font-style:normal;float:left; width:95px; }
.otherCont5 { font-size:8px;text-align:right; color:#a91024;font-family:Arial,Lucida Grande;font-style:normal;vertical-align:top;font-weight:bold;float:left; width:95px; }
.other6 { font-size:11px; color:#b8471b;vertical-align:top;font-weight:bold;font-style:normal;float:left; width:95px; }
.otherCont6 { font-size:8px;text-align:right; color:#b8471b;font-family:Arial,Lucida Grande;font-style:normal;vertical-align:top;font-weight:bold;float:left; width:95px; }
.other7 { font-size:11px; color:#7f1c7d;vertical-align:top;font-weight:bold;font-style:normal;float:left; width:95px; }
.otherCont7 { font-size:8px;text-align:right; color:#7f1c7d;font-family:Arial,Lucida Grande;font-style:normal;vertical-align:top;font-weight:bold;float:left; width:95px; }
.highlight { background-color:#bed6f8; }
.datestamp { padding-right:0px; font-size:11px; cursor:default;padding-top:1px;padding-bottom:1px; background-color:#a7a7a7; width:100%; float:left; text-align:right; color:#333333; font-weight:bold; font-style:italic; }
#chatAlert { float:left; border-bottom:1px solid #E8D091; padding:6px; width:100%; color:#A5754C; }
#chatAlertImage { float:left; }
#chatAlertText { float:left; margin-left:6px; margin-right:10px;}
#chatAlertClose { float:right; margin-right:10px; padding-right:6px; margin-top:0px; }
#chatAlertText a { color:#A5754C; }
#chatAlertText a:hover { color:#A5754C; text-decoration:none; }

.tsDisplay { display:block }.dsDisplay { display:none }





As a Proactive Security & Prevention Pentest Team member, you will be performing various types of infrastructure or application level security assessments including: vulnerability scanning, ethical hacking and penetration testing. Upon completion of testing activities you will need to write an assessment report which contains the findings, the assigned risk level, the proposed mitigation and all technical details which is necessary to reproduce the test results. Occasionally you will need to work with the system owners to mitigate vulnerabilities.
As a team member you will occasionally need to participate in the development of team processes and tools. To keep your personal and your team's skills up to date you will be required to continuously learn and share information with your team mates.

General Requirements:

  • Education level: Bachelor
  • Traditional office - agile working space
  • Language : Fluent English verbally and in writing, Hungarian is an advantage
  • Team player and flexible in the daily work
  • We work in an agile approach
  • Eager to learn new and other technical skills

Technical Requirements:
  • Solid knowledge of IT technologies (network protocols, operating systems, database systems, middlewares, and architecture patterns)
  • Hands on experience on administration of Linux and Windows systems
  • Hands on experience on one or more database systems
  • Proficiency in one or more multi platform scripting language. (eg. Perl or Python)
  • Solid knowledge of the various vulnerability types, their root cause, exploitation techniques and mitigation patterns
  • Hands on experience with the following tools:
  • Tenable Nessus or Rapid7 Nexpose
  • Nmap
  • Metasploit Framework
  • Burp Suite

Advantages :
  • IT Security / Pentesting experience
  • Hands on Antivirus and IDS alert avoidance experience
  • Exploit development experience
  • Reverse engineering experience
  • GIAC Certified Penetration Tester (GPEN) / Certified Expert Penetration Tester (CEPT) /Offensive Security Certified Professional (OSCP) or other relevant certificates


Required Technical and Professional Expertise

  • English knowledge is needed
  • Solid knowelde of IT technologies (network protocols, operating systems, database systems, middlewares, and architecture patterns)
  • Hands on experience on administration of Linux and Windows systems
  • Hands on experience on one or more database systems
  • Proficiency in one or more multi platform scripting language. (eg. Perl or Python)
  • Solid knowledge of the various vulnerability types, their root cause, exploitation techniques and mitigation patterns
  • Hands on experience with the following tools:
  • Tenable Nessus or Rapid7 Nexpose
  • Nmap
  • Metasploit Framework
  • Burp Suite


Preferred Tech and Prof Experience

  • Hands on Antivirus and IDS alert avoidance experience
  • Exploit development experience
  • Reverse engineering experience
  • GIAC Certified Penetration Tester (GPEN) / Certified Expert Penetration Tester (CEPT) /Offensive Security Certified Professional (OSCP) or other relevant certificates


EO Statement
IBM is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.


Meet Some of IBM's Employees

Peter M.

Leadership Development Solutions Leader

Peter works with a variety of teams within IBM to increase organizational clarity, equip leaders to serve well, and provide opportunities for employees to continually grow and expand their skills.

Rashida H.

Director, IBM Watson Client Delivery

Rashida leads the IBM Watson Delivery Team, which focuses on providing Watson implementation training for clients around the world, helping companies achieve the solutions they seek.


Back to top