At TÜV SÜD Group we are passionate about technology. Innovations impact our daily lives in countless ways, and we are dedicated to being a part of that progress. We test, we audit, we inspect, we advise. We never stop challenging ourselves for the safety of society and its people. We breathe technology, we strive for professional excellence, and we leave a mark. We take the future into our hands. We are TÜV SÜD Group.
Your Tasks:
- Perform black-box and grey-box penetration testing of web applications, APIs, mobile applications (Android/iOS), thick/thin clients, and infrastructure environments.
- Conduct vulnerability assessments, external attack surface reviews, and real-world attack simulations to identify, exploit, and validate security weaknesses across applications, networks, and exposed services.
- Execute manual and automated security testing based on OWASP Top 10, industry standards, and security best practices.
- Manage the end-to-end application security assessment lifecycle, including new application onboarding, testing, vulnerability validation, revalidation, and closure verification.
- Prepare and maintain security methodologies, SOPs, checklists, hardening baselines, and source code review processes to strengthen organizational security practices.
- Deliver comprehensive security reports with risk ratings, CVSS 4.0 scoring, proof of concepts (PoCs), business impact, and remediation recommendations, while collaborating with stakeholders for effective risk mitigation.
- Perform Red Team assessments on a need basis and provide actionable security improvement recommendations.
- Stay current with the latest cybersecurity threats, vulnerabilities, exploit techniques, tools, and emerging security trends.
Preferred Certification (Any 1)
- Certified Ethical Hacker (CEH)
- GIAC GWAPT (Web Application Penetration Tester)
- Offensive Security Certified Professional (OSCP)
- Certified Red Team Professional (CRTP)
Your Qualification:
- Graduate – Electronics Engineering, Computer Science
- Experience: 4 - 6 years in Cyber Security industry
- Working days: 6 days a week
At TÜV SÜD Group, we have employees from more than 100 different countries collaborating together. People of different backgrounds, skills, and pursuing different life goals. Our strength comes from these countless and varied perspectives.
We are committed to be an inclusive and diverse workplace by welcoming people of all backgrounds. We want Diversity & Inclusion (D&I) to be a foundation of our company and create an environment where all our employees can trust they will be treated with respect, regardless of gender, nationality, ethnic background, faith, beliefs, disabilities, age, sexual orientation, or identity. As such, our employees are expected to behave at all times in a manner consistent with TÜV SÜD Group Code of Ethics and Company values.
We firmly believe embedding D&I in the heart of what we do will inherently contribute to the success of TÜV SÜD Group. Click here to find out more about Diversity at TÜV SÜD Group.