от компании (организации): HUAWEI в городе (населённом пункте): Москва, Россия
в отрасли экономики "Информационные технологии, интернет, телеком" → "Передача данных и доступ в интернет"
с заработной платой: по договоренности
Вакансия № 21134119 добавлена в базу данных сайта Работа в Москве и Московской области (МО, Подмосковье): Воскресенье, 11 августа 2024 года.
Дата обновления вакансии № 21134119 на сайте Работа в Москве и Московской области (МО, Подмосковье): Воскресенье, 22 сентября 2024 года.
Обращаем Ваше внимание, что на момент обращения к работодателю вакансия № 21134119 может быть уже занята. Администрация сайта Работа в Москве и Московской области (МО, Подмосковье) приносит извинения за доставленные неудобства.
Требования к опыту работы:
более 6 лет
Тип занятости:
полная занятость
График работы:
полный день
Дополнительные сведения о вакансии: Cloud Service Red Team Engineer
About the Company
Huawei Technologies Co. Ltd. is a leading global ICT solution provider. Huawei's smartphone market share was ranked among Top-3 in the world in 2020. As part of Huawei Consumer Business Group, Huawei Mobile Service delivers high-quality digital content & mobile services to consumers. Our products consist of AppGallery, Petal Search, Browser, Game Center, Themes, Video, Music, Reader, HiCloud, etc. Huawei Mobile Service serves over 600 million customers in 170 countries. (More information please refer to https://huaweimobileservices.com/).
Job Description:
CBG Cloud Service Competence Center is looking for a Cloud Service Red Team Engineer to join a rapidly growing team of experts who defines the next generation of Huawei’s Threat Prevention technologies and protects millions of HMS-services users.
Responsibilities:
- Responsible for the penetration testing of IoT devices, Smart Home infrastructure, HMS applications, Android OS, Cloud services (API + Web), open source software. Discovering vulnerabilities and finding the security breaches and risks related with sensitive data, host permissions, etc.
- Responsible for monitoring of the latest published vulnerabilities, learning trends of penetration testing industry, proposing independent insights and solutions for specific attacks and challenges.
- Improve organization's security atmosphere and skills through the development of technologies for attacks prevention.
Professional knowledge requirements:
- Advanced experience in black-box/gray-box penetration testing of the hosts, networks and applications, websites, APIs.
- Experience in creating PoC for vulnerabilities and 1-day exploits
- Have a deep insight into the structure of the website / server, ability to predict the approximate website structure, server environment.
- Familiar with Web Shell acquisition, ability to find the CMS vulnerabilities such as WP, Joomla, DZ and other vulnerability plug-ins.
- Familiar with server rights structure, and the system / root permissions used by the system.
- Good understanding of network protocols, proficient in Linux / Android operating system.
- English level is Intermediate or above.
- Friendly team communication and collaboration skills.
Optional Qualifications Considered an Asset:
- Submitted CVE, CNVVD, NVD vulnerabilities
- Active participant of Bug Bounty programs
- Speaker at Cyber Security conference
- Received collective or individual awards on CTF competitions.
- Relevant Security Qualifications
Conditions:
- Professional and career development opportunity;
- Commercial medical insurance;
- Modern office in the city center;
- Employment according to the Labor Code of the Russian Federation.
Откликнуться на эту вакансию: Cloud Service Red Team Engineer
Предыдущая вакансия:
Вакансия № 21134117 на должность Медицинская сестра на выезде и в клинике от компании ООО Здоровое Поколение в городе (населенном пункте) Москва