Offensive Security Officer (Client-site)

At Umpisa Inc., our mission is to make the Philippines be known globally as a tech hub. 

Umpisa Inc. is a progressive technology services company that partners with select industries, clients and people to work on pioneering and industry-changing solutions via digital transformation, modern software development and venture building.

We create a set of world-class and impactful products and solutions to help organizations and individuals live better lives. We offer demanding, challenging and rewarding careers in software development, product development, emerging technologies, and more for the right candidates.

Essential Skills:

• Aligns with our values: Excellence, Integrity, Professionalism, People Success, Customer Success, Fun, Innovation and Diversity
• Strong communication skills
• Strong problem solving and analytical skills
• Excellent problem-solving ability
• Would like to work as part of a self-organizing Scrum team in a scaled agile framework
• Must be a self-starter and loves to collaborate with the team and client

Job Summary

Plan, document test methodologies and perform penetration testing or ethical hacking of network infrastructure,

APIs, application systems such mobile applications and thick client, all in a stealthy operation without being

detected, in order to identify potential security weaknesses in the system. Collaborate with ITG developers by

communicating the back doors/security weaknesses identified and providing inputs in correcting the security flaws.

Establish red team procedures in conducting red team exercises.

Requirements

• Graduate of any college degree in Computer Science or Information Security, Cybersecurity or related technical field of expertise.
• Strong understanding of vulnerabilities, common attack vectors and has attacker mindset: ability to think about creative threats and attack vectors.
• Certification a plus but not necessary, i.e., SANS GPEN, GWAP, OSCP, CEH or equivalent.
• Some experience in ethical hacking a plus but not necessary.
• Advanced computer skills – extensive computer skills and an understanding of networking fundamental, including forensics, reverse engineering, web applications, databases, and wireless technologies.
• Scripting and programming skills.
• Highly analytical with exceptional problem-solving skills.
• Have good teamwork and collaboration skills, a good team player.
• Good written and verbal communication skills: to effectively articulate and explain complex security topics in simple language and easy to understand concepts.
• Possess time management skills, thrive in a fast-paced demanding environment.
• Be a self-managed, self-starter with good organizational skills.