We are seeking a Cybersecurity Specialist to join our client’s security team within the banking sector. The successful candidate will be responsible for conducting Breach & Attack Simulations (BAS), Dynamic Application Security Testing (DAST), and related security assessments to evaluate and strengthen the organization’s cybersecurity posture.
This role requires a technically skilled and analytical professional who can collaborate effectively across IT, DevSecOps, and IT Security functions to identify vulnerabilities, assess risks, and support remediation efforts in a complex financial environment.
Key Responsibilities
- Execute Breach & Attack Simulation (BAS) exercises to assess the effectiveness of security controls.
- Perform Dynamic Application Security Testing (DAST) to detect and analyze runtime vulnerabilities in applications.
- Correlate and interpret penetration testing results alongside other security assessment data to provide actionable insights.
- Collaborate with IT, DevSecOps, and Security Operations teams to support vulnerability management and risk mitigation.
- Prepare detailed yet concise technical reports and communicate findings to both technical and business stakeholders.
Required Skills & Experience
- 3–4 years of hands-on experience in security vulnerability assessment.
- Practical experience with BAS, DAST, and automated penetration testing tools.
- Strong understanding of OWASP Top 10, CVE, and CVSS scoring frameworks.
- Familiarity with Linux and Windows operating systems and network security fundamentals.
- Basic understanding of API and cloud security principles across AWS, Azure, or GCP.
- Experience using Microsoft Defender security solutions (Defender for Endpoint, Defender for Cloud, Defender for Identity).
Preferred Qualifications
- Certifications such as OSCP, CEH, CISSP, or CompTIA Security+.
- Exposure to Cloud Security Posture Management (CSPM) tools and frameworks.