Information Security
Responsibilities:
• Ethical Hacking & Vulnerability Research: Explore and test internal digital infrastructure, websites, and cloud assets for security gaps using authorized ethical hacking methodologies.
• CTF Event Engineering: Conceptualize, build, and organize technical Capture The Flag (CTF) competitions and security challenges for both internal teams and external tech communities.
• Security Monitoring & Auditing: Assist in monitoring network traffic, auditing data storage protocols, and ensuring company databases adhere to basic information security best practices.
• Cybersecurity Awareness: Help draft and implement internal security policies, data handling guidelines, and phishing awareness training to maintain a secure corporate environment.
• Threat & Risk Documentation: Keep detailed technical logs of identified vulnerabilities, compile risk assessment reports, and assist in creating incident response playbooks.
Preferred Skills / Requirements:
• Security Tools & Fundamentals: Strong foundational knowledge of network security, the OWASP Top 10, and familiarity with tools like Burp Suite, Wireshark, or Nmap.
• CTF & Gamification Platforms: Experience participating in or organizing CTFs, with familiarity in challenge design (e.g., Web Exploitation, Cryptography, or Forensics) and hosting platforms like CTFd.
• Analytical Problem-Solving: A meticulous, detail-oriented mindset capable of thinking like an attacker to proactively defend corporate infrastructure.
• Clear Documentation: Ability to clearly document technical vulnerabilities and explain security risks in simple terms to non-technical team members.