As part of the internal Red Team in Danske Bank, you will get hands-on experience by participating in Red Team engagements, penetration tests, application tests, code reviews, and other security-related assignments. You will get a unique opportunity to work full-stack with many of the unique technologies used within a major bank, such as payment- & trading systems, ATMs, Mainframe, etc. This is a highly technical hands-on role reserved for those with the right skill set, mindset, and an appetite for hacking stuff, finding vulnerabilities, and discovering new weaknesses in all parts of the cyber attack chain. You will be part of a skilled and dedicated team of hackers working together to improve the security of Danske Bank.
IT Security Engineer (Pentester)
Application period has expired.
You will:
- Perform network penetration tests, web and mobile application tests, and source code reviews
- Participate as a team member in Red Team engagements
- Develop reports for your findings, and effectively communicate these both to system owners and executive management.
- Provide guidance regarding security-related issues to system owners, architects, and management
- Be at the forefront with various tactics, techniques, and procedures adopted by modern-day attackers
- Develop and use tools, scripts, and methods for the betterment of the team.
About you:
Primary Skills:
- 3+ years of experience with hands-on penetration testing
- Experience with programming/scripting languages such as Python, PowerShell, Ruby, Bash
- Working knowledge of Windows Active Directory
- Knowledge of IBM Mainframe is a plus
- The right mindset, hands-on experience, and skills are preferred over formal education
- Working knowledge of Burp Suite Professional or OWASP ZAP
- Knowledge of operating systems (Windows, Mac OS, and Linux)
Secondary Skills:
- Upper – intermediate English skills (Required)
- Able and willing to work in a dispersed team environment (LT/DK/IN)
- Persistent in solving problems
- Ability to cooperate with other teams and stakeholders.
Any of these certifications would be useful but not required
OSCP, OSWE, OSED, eWPT, eCPPT, eCPTX or CRTP
Application period has expired.
If you are interested, please send your CV in English no later than 11.08.2022. Confidentiality guaranteed.
Your title in job contract will be IT Security Engineer.