Senior Cyber-Security Tester/Researcher

  • Full-time

Company Description

Since 1998, Lostar is the leading Information Security firm, with more than 1000 projects.

Its main services are; Information Security Checkups such as Internet-Intranet Penetration Tests, Gap Analysis of world wide best practices like COBIT, ISO 27001, ISO 22301 and ISO 20000, related consultancy and data protection projects and also Employee Security Awareness Methodology trainings.

Lostar consultants, who are well trained and experienced, create the optimal-cost solutions for their customers with paying attention to technical and commercial needs.

Roots in Turkey, Lostar has 3 offices in 3 different cities such as Istanbul, London and Sakarya.



We work with the best to create the best service and value for our clients.

For latest news and updates please follow us on:
  • Linkedin: Lostar
  • Instagram: LostarInfoSec
  • Twitter (TR): Lostar
  • Twitter (EN): Lostar_EN
  • YouTube: LostarTV
  • Facebook: Lostar
  • Facebook (Jobs): LostarKariyer
and visit our web sites:
  • English: https://lostar.com
  • Turkish: https://lostar.com.tr

Job Description

JOB DESCRIPTION
Main job responsibilities:

  • Cyber-security research,
  • Penetration testing,
  • Improvement and leading of penetration testing and related services,
  • IT security assessment,
  • Information security consulting,
  • PCI DSS assessment/consulting,
  • R&D of new services,

Optional duties:

  • Team management,
  • Project management.
  • Active support to sales.

 

     

    Qualifications

    Education and Experience

    • Bachelor’s degree or equivalent
    • 5+ years of IT experience
    • 3-5 years of hands-on penetration testing / ethical hacking experience
    • Preferred - CISA, CISSP, CEH, LPT, OSCP, GPEN or other industry security certification
    • Skills and Knowledge
    • Intermediate to advanced knowledge of TCP/IP networks, ports, protocols, and infrastructure setup
    • Intermediate to advanced knowledge of web server software, including Microsoft IIS, Apache, and Tomcat web servers
    • Intermediate to advanced technical knowledge of, and the ability to recognize, various types of security vulnerabilities
    • Demonstrated experience with common penetration testing and vulnerability assessment tools such as nmap, wireshark, Nessus, NeXpose, BackTrack, Metasploit, AppScan, WebInspect, Burp Suite, etc.
    • Understanding of C, C#, Objective C and Java.
    • Understanding of HTML, PHP, Perl and Python
    • Understanding of web frameworks, including XML, SOAP, JSON and Ajax
    • Proven analytical and problem solving skills, as well as the desire to assist others in solving issues
    • Highly motivated with the willingness to take ownership / responsibility for their work and the ability to work alone or as part of a team
    • Full commitment to customer satisfaction and the highest ethical standards
    • Turkish citizen, living in Istanbul

    Additional Information

    Working knowledge of ethical hacking methodologies such as Open Source Security Testing Methodology Manual (OSSTMM), Open Web Application Security Project (OWASP), Penetration Testing Execution Standard (PTES), and/or Penetration Testing Framework

    Privacy Policy