• Work as a member of the Cyber Security team on penetration testing projects
• Perform penetration tests, ethical hacking, system vulnerability tests and IT security risk assessments
• Take part in many IT security and advisory projects, visiting many different companies, and working with many various IT systems
• Duties will also include providing infrastructure and application vulnerability assessment and penetration testing services, as well as identifying weaknesses and vulnerabilities within the system and proposing countermeasures
• Typical assignments will involve testing of the overall security of critical infrastructure components and applications to ensure they comply with security architecture best practices, and industry standards
• Scanning and discovering rouge hosts, networks, and devices; and scanning and discovering vulnerable systems and applications are also part of the job
• The candidate will be expected to act as a subject matter expert in offensive information security including databases, networking, operating systems, applications, and programming

Pre-requisites for this position are at least a 3+ years of experience in most of the following:

• Conducting vulnerability assessments and penetration testing (application and/or infrastructure) and articulating security issues to technical and non-technical audience (3+ years)
• Identifying, researching, validating, and exploiting various different known and unknown security vulnerabilities on server and client side
• Knowledge of attack vectors, threat tactics and attacker techniques
• Familiarity with common toolkits used in penetration testing
• Knowledge of vulnerability Assessment tools, e.g. Nessus, Qualys, etc.
• Knowledge of exploitation frameworks, e.g. Metasploit
• Deep understanding of OSI model
• Knowledge of security devices, e.g. Firewalls, VPN, AAA systems
• Knowledge of OS Security, e.g. Unix, Linux, Windows, Cisco, etc.
• Experience in systems engineering with Linux systems (2+ years)
• Understanding of common protocols, e.g. LDAP, SMTP, DNS, Routing Protocols
• Knowledge of web application infrastructure, e.g. Application Servers, Web Servers, Databases
• Knowledge of web development and programming languages i.e. Python, Perl, Ruby, Java, and/or .Net (2+ years)
• Fluent Hungarian, English
• Reporting information security vulnerabilities to businesses
• Innovative thinker
• Ability and willingness to learn and deliver in a challenging environment
• Client oriented thinking