job description
Are you a passionate cybersecurity professional looking to elevate your career with a leading technology provider? Trends Group, Inc. is currently seeking a skilled VAPT Engineer to join our robust Cybersecurity Operations team in Makati City. In this role, you will play a critical part in fortifying our clients' digital infrastructure by identifying vulnerabilities, mitigating threats, and conducting advanced forensic investigations.
As a VAPT Engineer, you will work at the forefront of security technology, collaborating with a high-performing team to deliver world-class cybersecurity services. We prioritize continuous learning and professional development, ensuring that our engineers stay ahead of emerging cyber threats in an ever-evolving landscape. If you possess a keen eye for security gaps and a dedication to operational excellence, we invite you to help us build a safer digital future.
Responsibility
- Execute comprehensive Vulnerability Assessment and Penetration Testing (VAPT) across diverse network architectures and web applications.
- Analyze security logs and provide actionable insights for incident response and threat mitigation.
- Perform digital forensics analysis to investigate security breaches and determine root causes.
- Develop and maintain detailed technical reports, documenting security gaps and remediation recommendations for stakeholders.
- Stay up-to-date with the latest cybersecurity trends, exploit techniques, and regulatory compliance standards.
- Collaborate with cross-functional teams to implement security hardening measures and best practices.
- Assist in the continuous improvement of security operations centers (SOC) workflows and incident response playbooks.
Qualifications
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Minimum of 2-3 years of professional experience in vulnerability assessment and penetration testing.
- Proficiency in security tools such as Nessus, Burp Suite, Metasploit, Nmap, and Wireshark.
- Strong understanding of OWASP Top 10, common network protocols, and operating system security (Linux/Windows).
- Solid knowledge of incident response procedures and digital forensic methodologies.
- Relevant professional certifications (e.g., OSCP, CEH, CompTIA CySA+, or GCIH) are highly preferred.
- Excellent communication and analytical skills with the ability to articulate complex security concepts to non-technical stakeholders.