junior penetration test AnalystCitco
Workplace: MetroManila, Manila, Makati
Salary: Agreement
Work form: Full time
Posting Date: 07/11/2025
Deadline: 30/11/2022
Description
Junior Penetration Test Analyst
Makati, Philippines
Hybrid Work Setup
About Citco
Citco is a global leader in fund services, corporate governance and related asset services with staff across 80 offices worldwide. With more than $1 trillion in assets under administration, we deliver end-to-end solutions and exceptional service to meet our clients' needs.
For more information about Citco, please visit
About the Team & Business Line:
Proprietary software solutions and innovation are at the core of what differentiates Citco in the alternative investment space. Through our network of global development centres, Citco invests heavily in technology development, security, and infrastructure to ensure our clients continue to receive award-winning products that underpin our commitment to service excellence.
As a core member of our Product Development team you will work with dedicated professionals to ensure our clients maintain access to their critical information assets while keeping Citco ahead of industry trends.
Your Role:
Position is responsible for working individually and as part of a team on application/network penetration tests, vulnerability assessment and other security Red Team activities as assigned. This position will involve working closely with development and projects teams to ensure that internal, secure development processes are adhered to and applications produced by the process are free from security vulnerabilities. Position will also be responsible for providing basic guidance with regard to development best practices, prevention and remediation of application and infrastructure vulnerabilities.
This position reports to the IT Security Manager and is a key position within the IT Security group which is responsible for protecting the Confidentiality, Integrity and Availability of Citco data and resources.
Technical Expectations/Professional Practices:
Complete penetration testing engagements using both manual and automated testing tools, document results using approved report formats and track remediation
Perform manual validation of results from automated/semi-automated tests
Perform manual penetration test activities as needed
Ability to incorporate compensating controls when assessing risk level of security issues reported
Complete social engineering and physical on-site assessments as directed
Familiar with network mapping, host enumeration and scanning tools
Complete project work accurately and within deadlines as required
Complete analysis, assess issue risk and recommend remediation strategy.
Coordinate with internal colleagues to follow up on vulnerability remediation.
Develop and maintain effective working relationships with clients and other team members.
Gain and maintain a working knowledge security testing best practices
Continually review and enhance existing knowledge of attacker tactics, tools and techniques
Administrative Expectations:
Strong team player.
High attention to detail.
Ability to work independently.
Portray professional demeanor with calmness and clarity of thought under pressure.
Ability to maintain confidentiality and use good professional judgment.
Strong written and verbal communication skills.
Strong conceptual thinking and communication skills.
Demonstrate flexibility and adaptability in approach to work.
Accept responsibility and personal accountability.
Maintain good attendance and punctuality.
About You:
A bachelor's degree information systems or other related field; or equivalent work experience.
Demonstrate a self-directed approach to learning new technologies in the field; pursue professional development.
Technical acumen in securing software and hardware
Experience using common penetration testing tools
Possess knowledge of web application penetrating testing methodologies
Analysis of operating system, application and network architectures to identify security vulnerabilities
Working knowledge of operating systems and distributions.
Understanding of Windows administration, enumeration and exploitation concepts and techniques
Understanding of TCP/IP, HTTP and TLS protocols
Knowledge of security issues related to many common databases including MySQL, MSSQL and Oracle
Working knowledge of application testing such as fuzzing, enumeration and injection techniques
Scripting and programming skills are preferred
Experience using Burp Suite, Metasploit, Nmap and Nessus a plus
Professional security certifications such as CISSP, GPEN, GCIA or GWAPT are a plus
Our Benefits
Your well being is of paramount importance to us, and central to our success. We provide a range of benefits, training and education support, and flexible working arrangements to help you achieve success in your career while balancing personal needs. Ask us about specific benefits in your location.
We recognize diversity as a source of organizational pride and strength. We have made it a priority to reflect our nation's evolving diversity in the people we hire, and the culture we create in our organization.
Citco welcomes and encourages applications from people with disabilities. Accommodations are available upon request for candidates taking part in all aspects of the selection.
Citco
Junior Penetration Test Analyst
Makati, Philippines
Hybrid Work Setup
About Citco
Citco is a global leader in fund services, corporate governance and related asset services with staff across 80 offices worldwide. With more than $1 trillion in assets under administration, we deliver end-to-end solutions and exceptional service to meet our clients' needs.
For more information about Citco, please visit
About the Team & Business Line:
Proprietary software solutions and innovation are at the core of what differentiates Citco in the alternative investment space. Through our network of global development centres, Citco invests heavily in technology development, security, and infrastructure to ensure our clients continue to receive award-winning products that underpin our commitment to service excellence.
As a core member of our Product Development team you will work with dedicated professionals to ensure our clients maintain access to their critical information assets while keeping Citco ahead of industry trends.
Your Role:
Position is responsible for working individually and as part of a team on application/network penetration tests, vulnerability assessment and other security Red Team activities as assigned. This position will involve working closely with development and projects teams to ensure that internal, secure development processes are adhered to and applications produced by the process are free from security vulnerabilities. Position will also be responsible for providing basic guidance with regard to development best practices, prevention and remediation of application and infrastructure vulnerabilities.
This position reports to the IT Security Manager and is a key position within the IT Security group which is responsible for protecting the Confidentiality, Integrity and Availability of Citco data and resources.
Technical Expectations/Professional Practices:
Complete penetration testing engagements using both manual and automated testing tools, document results using approved report formats and track remediation
Perform manual validation of results from automated/semi-automated tests
Perform manual penetration test activities as needed
Ability to incorporate compensating controls when assessing risk level of security issues reported
Complete social engineering and physical on-site assessments as directed
Familiar with network mapping, host enumeration and scanning tools
Complete project work accurately and within deadlines as required
Complete analysis, assess issue risk and recommend remediation strategy.
Coordinate with internal colleagues to follow up on vulnerability remediation.
Develop and maintain effective working relationships with clients and other team members.
Gain and maintain a working knowledge security testing best practices
Continually review and enhance existing knowledge of attacker tactics, tools and techniques
Administrative Expectations:
Strong team player.
High attention to detail.
Ability to work independently.
Portray professional demeanor with calmness and clarity of thought under pressure.
Ability to maintain confidentiality and use good professional judgment.
Strong written and verbal communication skills.
Strong conceptual thinking and communication skills.
Demonstrate flexibility and adaptability in approach to work.
Accept responsibility and personal accountability.
Maintain good attendance and punctuality.
About You:
A bachelor's degree information systems or other related field; or equivalent work experience.
Demonstrate a self-directed approach to learning new technologies in the field; pursue professional development.
Technical acumen in securing software and hardware
Experience using common penetration testing tools
Possess knowledge of web application penetrating testing methodologies
Analysis of operating system, application and network architectures to identify security vulnerabilities
Working knowledge of operating systems and distributions.
Understanding of Windows administration, enumeration and exploitation concepts and techniques
Understanding of TCP/IP, HTTP and TLS protocols
Knowledge of security issues related to many common databases including MySQL, MSSQL and Oracle
Working knowledge of application testing such as fuzzing, enumeration and injection techniques
Scripting and programming skills are preferred
Experience using Burp Suite, Metasploit, Nmap and Nessus a plus
Professional security certifications such as CISSP, GPEN, GCIA or GWAPT are a plus
Our Benefits
Your well being is of paramount importance to us, and central to our success. We provide a range of benefits, training and education support, and flexible working arrangements to help you achieve success in your career while balancing personal needs. Ask us about specific benefits in your location.
We recognize diversity as a source of organizational pride and strength. We have made it a priority to reflect our nation's evolving diversity in the people we hire, and the culture we create in our organization.
Citco welcomes and encourages applications from people with disabilities. Accommodations are available upon request for candidates taking part in all aspects of the selection.
Citco
Other Info
Makati City, Metro Manila
Permanent
Full-time
Permanent
Full-time
Submit profile
Citco
About the company
Citco jobs
Makati City, Metro Manila
Position junior penetration test Analyst recruited by the company Citco at MetroManila, Manila, Makati, Joboko automatically collects the salary of , finds more jobs on Junior Penetration Test Analyst or Citco company in the links above
About the company
Citco jobs
Makati City, Metro Manila