Vulnerability Research Analyst

Location Singapore
Discipline Information & Communications Technology
Job Reference BBBH136665_1711620950
Salary S$6000 - S$9000 per month
Consultant Name Rajasekar Shirley Monisha
Consultant Email [email protected]
Consultant Contact No. 6232 5244
EA License No. 02C3423
Consultant Registration No. R22106767


Responsibilities:

  • Research and analyze newly published security vulnerabilities to assess their severity and potential impact on the organization's systems and infrastructure.
  • Conduct proof of concept testing for identified vulnerabilities to validate their existence and understand their exploitation potential.
  • Utilize knowledge and experience with OWASP Top 10 vulnerabilities to identify, detect, exploit, and remediate security weaknesses.
  • Perform vulnerability scanning using tools such as Tenable, Qualys, and others to identify security flaws in systems and networks.
  • Demonstrate a excellent understanding of IPv4 and IPv6 networks and their associated vulnerabilities.
  • Utilize Linux operating systems for vulnerability research and analysis purposes.
  • Collaborate with cross-functional teams to prioritize and address identified vulnerabilities in a timely manner.
  • Stay informed about emerging security threats, vulnerabilities, and mitigation techniques to enhance the organization's security posture.



Requirements:

  • Bachelor's degree in Computer Science, Information Security, or related field.
  • 3+ years of experience in vulnerability research and analysis, preferably in a cybersecurity or information security role.
  • Familiarity with common security vulnerabilities and the ability to assess their severity and impact on business operations.
  • Hands-on experience with running proof of concept testing for known vulnerabilities.
  • In-depth knowledge and practical experience with OWASP Top 10 vulnerabilities, including detection, exploitation, and remediation.
  • Proficiency in using vulnerability scanning tools such as Tenable, Qualys, and others.
  • Good understanding of IPv4 and IPv6 networks and their associated vulnerabilities.
  • Experience working with Linux operating systems.
  • Excellent analytical and problem-solving skills.
  • Effective communication and collaboration abilities to work with cross-functional teams.
  • Relevant certifications such as CEH (Certified Ethical Hacker), OSCP (Offensive Security Certified Professional), or similar are a plus.