Save Job Back to Search Job Description Summary Similar JobsExplore a career with a leading financial services company.Enjoy market-aligned salaries, benefits, and incentives.About Our ClientThe hiring company is a large organization within the financial services industry. It leverages advanced technology to deliver secure and innovative solutions to its clients while maintaining a strong presence in the market.Job DescriptionKey Responsibilities:Conduct comprehensive penetration testing of applications, networks, infrastructure, APIs, and cloud environments.Perform vulnerability assessments across enterprise assets and report on risks and remediation strategies.Simulate sophisticated threat actor tactics and participate in red team/adversary emulation exercises.Collaborate with blue teams to enhance detection and response through insights gained from offensive testing.Deliver detailed technical and executive-level reports outlining findings, risk impacts, and mitigation steps.Develop and maintain tools and scripts to enhance offensive security capabilities.Ensure alignment with regulatory requirements, including BSP Circulars, PCI-DSS, SWIFT CSP, and other relevant standards.Support threat modeling and security design reviews for high-risk systems and applications.Participate in security incident response simulations and contribute to post-mortem analysis from an attacker's perspective.Stay current with the evolving threat landscape, offensive tools, and banking-specific cyber risks.The Successful ApplicantRequired Qualifications:At least 5 years of hands-on experience in penetration testing and vulnerability assessment, preferably in an enterprise environment.Demonstrated ability to identify and exploit critical vulnerabilities in production systems.Background in banking, fintech, or financial services is strongly preferred.Proficiency in tools such as Burp Suite Pro, Metasploit, Cobalt Strike, Kali Linux, Nmap, Nessus, Wireshark, and scripting languages like Python, PowerShell, or Bash.Experience with cloud platforms (AWS, Azure, GCP) and related security testing.Familiarity with enterprise systems including core banking platforms, payment gateways, and API-based services.Preferred Certifications:OSCP (Offensive Security Certified Professional)Other relevant certifications such as CREST, OSCE, eCPTX, CRTP, GPEN, GXPN, CISSP, or cloud security credentials are considered a plus.Red or purple team-specific training is advantageous.Key Attributes:Strong analytical, communication, and documentation skills.Ability to explain complex technical findings to both technical and non-technical stakeholders.Self-motivated, detail-oriented, and capable of working independently or as part of a global team.High level of integrity and discretion in handling sensitive information.What's on OfferCompetitive base salaryAllowances and performance-based bonuses.Generous leave entitlements.Opportunities to work in a large organization within the financial services industry.If you are passionate about cybersecurity and ready for a role that makes a real impact, we encourage you to apply today.ContactGio DumatolQuote job refJN-062025-6770180Phone number+63 02 7795 2825Job summaryFunctionITSub SectorSecurityWhat is your area of specialisation?Technology & TelecomsLocationPhilippinesJob TypePermanentConsultant nameGio DumatolConsultant contact+63 02 7795 2825Job ReferenceJN-062025-6770180Work from HomeWork from Home or Hybrid
