Vulnerability Operations Consultant (Offensive Security)
Descrição do trabalho
About The Opportunity
Within Group Digital & IT, the VOC team is responsible of continuously monitoring vulnerabilities in the company's environnement as well as Exposed Attack Surface across all business and regions.
As a VOC Consultant, you are responsible for delivering key projects around Pentest and automated Pentest.
You will report to the VOC Manager and act as an enabler across several key workstreams. Your role will include Pentest organization, operational support, process documentation, automation, and Script development. You will also contribute to offensive security testing.
- Responsibilities
- Pentest organization
- Assist the offensive team in planning and preparing for Pentests, including account and role preparation, and environment identification
- Organize kick-offs and Pentest meeting and lead the discussion and scope definition
- Gather prerequisites and test them to speed up Pentest delivery by the OSO team
- Coordinate logistics for Pentesting, including kick-off and final restitution meetings
- Automated Pentest Platform Support
- Onboard new application on the solution (finding the right signature contact, presenting the process and the solution and launching the signature process to onboard the application on automated pentest)
- Maintain the operational delivery of the Patrowl service (blackbox pentest).
- Document a standard onboarding process for new applications into the platform, including contractual steps.
- Your role will also be helping the VOC teams into organizing pentest activities both GB and WB as well as BB automated pentests.
- Within That Context, You Missions Are To
- Pentest organization
- Operational Support and Enablement
- Required Qualifications
- Project Management: Proficient
- Cybersecurity: Proficient
- Risk Management: Advanced
- Penetration Testing: Basic
- Scripting: Advanced
Avenue Code reinforces its commitment to privacy and to all the principles guaranteed by the most accurate global data protection laws, such as GDPR, LGPD, CCPA and CPRA. The Candidate data shared with Avenue Code will be kept confidential and will not be transmitted to disinterested third parties, nor will it be used for purposes other than the application for open positions. As a Consultancy company, Avenue Code may share your information with its clients and other Companies from the CompassUol Group to which Avenue Code’s consultants are allocated to perform its services.