Search Results

Internet of Things (IoT) Penetration Tester, Red Team

Careers@Gov
Agency: Government Technology Agency
Job no.: 532331
Work type: Permanent/Contract
Location: Singapore
Categories:InfoComm, Technology, New Media Communications

The Government Technology Agency (GovTech) aims to transform the delivery of Government digital services by taking an "outside-in" view, putting citizens and businesses at the heart of everything we do. We also develop the Smart Nation infrastructure and applications, and facilitate collaboration with citizens and businesses to co-develop technologies.

Join us as we support Singapore’s vision of building a Smart Nation - a nation of possibilities empowered through info-communications technology and related engineering.

Do you want to play a critical role in securing our smart nation initiatives by uncovering weaknesses in various domains of cybersecurity programs even before the real threat actors come to play? And are you up to race against the real threats before organizations are compromised?  
 
We are seeking for a cybersecurity specialist in penetration testing and vulnerability assessment to join our Cyber Security Group’s Red Team. You will be part of the team that helps to protect our government’s assets from cyber-attacks. In addition, you will have opportunities to be involved in assessing new cybersecurity developments in line with our smart nation initiatives. In order to succeed, you need to demonstrate the ability to quickly assimilate knowledge in new technologies.
 
As part of this team, you will perform penetration testing and vulnerability assessment that span across infrastructure, web application, mobile application, source code security review, etc. You will also have the opportunity to carry out targeted Adversary Simulations in your course of work.
 
Furthermore, as an IoT PT Specialist, you will be required to perform in-depth penetration testing, research on tools and techniques on (1) Embedded or Hardware Devices, (2) Software or Firmware and (3) Radio Communications.
 
What to Expect:
  • Support in the conduct of Penetration Testing (PT) and Vulnerability Assessment (VA) on IT assets and IoT Architecture
  • Support in the conduct of Adversary Simulation (AS) on assets
  • Support in the documentation of findings, analysis, report preparation and presentation
  • Develop customised tools to conduct PT and AS
  • Research in Penetration Testing and Adversary Simulation Techniques, Tactics and Procedures (TTPs)
  • Familiar with security principles, policies and industry best practices
How to Succeed:
  • Degree in Information Security, Computer Science/Engineering, IT or equivalent
  • Passionate in cybersecurity
  • Good understanding of web application, system and infrastructure/IoT architecture
  • Good communication & presentation skills
  • Collaborative and team player, self-motivated, creative and versatile
Pluses+:
  • Penetration testing-specific certifications such as GPEN, CREST, OSCP, GICSP is an advantage
  • At least 1-year hands-on experience performing PT/VA
  • Familiar with scripting languages, for example, Perl, Python, VBscript, Javascript or Powershell, Ruby
  • Familiar in IoT Architecture (Embedded or Hardware Devices, Software or Firmware or/and Radio Communications)
  • Familiar with ARM or/and MIPS Instruction Set Architecture
  • Familiar with hardware interfaces and serial communication protocols (SPI, UART, JTAG etc.)
  • Have relevant experience with implementation or deployment of ICS/SCADA/IoT Systems

Advertised:
Applications close:

Back to search results Apply now

Share this:

| More
Back To TopTOP