EIS is an insurance software company that enables leading insurers to innovate and operate like a tech company: fast, simple, agile. Founded in 2008, EIS provides an open, flexible platform of core systems and digital solutions allowing insurers to accelerate and scale innovation, launch products faster, deliver new revenue channels, and create experiences the world will love. With thousands of APIs, the platform gives insurers the freedom to connect to a vast ecosystem of insurtech and emerging technologies. EIS powers premium growth for insurers in all lines of business worldwide.
The Role:
As a Penetration Tester in our company, you will perform organization and network security analysis (similar to red teaming) to identify vulnerabilities, misconfigurations, and gaps in defenses across People, Processes, and Tools.
Essential Responsibilities:
- Internal and external network security assessments across all ATT&CK tactics
- Cloud infrastructure assessments (AWS and Azure)
- Private infrastructure assessments (Cisco-based)
- Container and cluster infrastructure security assessments
- Active Directory security assessments
- Automating successful attacks to identify similarly vulnerable systems at scale
- Identifying and helping to fix gaps in IDS, IPS, AV, defensive tools and infrastructure
- Attack simulation, including social engineering
Requirements/Desired Experience:
- At least 2 years of experience in network penetration testing. The more - the better.
- Understanding of ATT&CK tactics
- Knowledge of common protocols (HTTP/S, IP, TCP/UDP)
- Bash and Powershell
- Wireshark
- Enough Python experience for routine tasks automation
- Intermediate level of English or higher
As a plus
- Good progress with Hack The Box challenges
- Solid practical experience with ATT&CK tactics
- Practical experience with Cisco IOS, Active Directory, container, and AWS/Azure cloud security
- Knowledge of network and authentication protocols (L2TP/PPTP/OpenVPN/IPSEC, TACACS, Kerberos, LDAP, SNMP, SMTP)
- Experience with crafting custom packets with Scapy
- Experience with binary exploit debugging
- Forensic analysis, tools and processes
- Beneficial certifications - OSCP, GPEN, OSCE, GXPN, CCNA Security, CCNA R&S, CCNP, or others relevant to network security and exploitation
We offer:
- Variety of new knowledge sharing and training opportunities
- Unique international working environment
- Good compensation based on the regular performance reviews
- Health insurance
- Friendly team and motivating work environment
Company website:
https://www.eisgroup.com/
DOU company page:
https://jobs.dou.ua/companies/eis-group/
About EIS
EIS is a global innovator, providing the insurance industry with transformational platforms to enable their success. We are committed to delivering tools, digital enablement, and exploring emerging technologies that drive efficiency and empower clients to reimagine the possible.
Our culture is highly innovative, collaborative and focused on building and maintaining relationships that allow us to surpass our customers’ expectations. We embrace the qualities that make each of our team members unique and develop each other’s skillsets so that together we can be stronger than the sum of our parts.
Company website:
https://www.eisgroup.com/
DOU company page:
https://jobs.dou.ua/companies/eis-group/
The job ad is no longer active
Job unpublished on
22 April 2022
Look at the current
jobs
Security
Kyiv→