Role Overview-

The Security Consultant at Tesserent is a hands-on, technical role, responsible for delivering high quality reports, explaining security issues to both technical and non-technical clients, and contributing to Tesserent internal research and development projects.

ACCOUNTABILITIES-

• Network Security Assessments (Penetration Tests)
• Security Issues (vulnerabilities) in several services available in external and internal networks
• Exploiting vulnerabilities in services working based on different technologies and protocols, such as HTTP, HTTPS, FTP, SSH, FTP, SCP, SFTP, Custom TCP and UDP implementations
• Write details reports describing the vulnerabilities found and guiding/making a suggestion on how to fix the vulnerabilities

• Web Application Security Assessments (Penetration Tests)
• Security Issues (vulnerabilities) in Web Application running on different Operating Systems, such as Windows Server in many different versions, Linux servers running several different flavours of Linux Distributions such as Debian, Red Hat, CentOS
• Security Issues (vulnerabilities) in Web Application running on different platforms/framework, such as ASP, ASP.Net, Java, PHP
• Write details reports describing the vulnerabilities found and guiding/making a suggestion on how to fix the vulnerabilities

• Mobile Security Assessments (Penetration Tests)
• Identify security issues in the mobile applications running in the following Operating Systems: iOS and Android
• Write details reports describing the vulnerabilities found and guiding/making a suggestion on how to fix the vulnerabilities

• Vulnerability Assessments
• Vulnerability scanning in External and Internet networks
• Vulnerabilities in services working based on different technologies and protocols, such as HTTP, HTTPS, FTP, SSH, FTP, SCP, SFTP, Custom TCP and UDP implementations
• Understand vulnerabilities and filtering potential false positives to guide the customer in the right directions to fix security vulnerabilities
• Nessus as a primary tool to assist the Vulnerability Assessments
• Write details reports describing the vulnerabilities found and guiding/making a suggestion on how to fix the vulnerabilities

• Development of recurring and urgent reports and related on-demand inquiries

COMPETENCIES-

TECHNICAL-

• Must be able to independently carry out the job activities detailed above
• Ability to develop web and infrastructure exploits for identified vulnerabilities
• Proactively research emerging threats, vulnerabilities, and attack vectors 
• Ability to develop and utilise Tesserent testing methodologies to provide effective technical assurance

BUSINESS SKILLS-

• Strong written skills to clearly explain concepts with accurate grammar.
• Reporting and explaining the results of penetration tests aimed at technical employees, managers, and executives.
• Ability to articulate business implications and accurately calculate risks of findings in relation to the business

INTERPERSONAL & INTRAPERSONAL SKILLS-

• Ability to confidently and accurately speak about security and recommend security controls to experienced security professionals
• Ability to work as a team with decisions made to support moving towards common goals
• Flexibility and motivation to work across application, infrastructure, consulting, and managed services engagements and systems

BENEFITS-

• Opportunities to undertake technical training and secure industry recognised certifications
• Flexible working arrangements with a mix of remote and in-person work
• Opportunities to work with some of the best cybersecurity professionals in the region and to grow and develop your career
• Extra leave day per year for you birthday.