Skip to content

VAPT Bilingual Engineer (BGC, Taguig) - msjd

Job Category:

BPO / KPO / Shared Services

Job Level:


Open Date:




Close date:


Client Overview:

Our client is a BPO Company from Japan. They provide several services such as multilingual contact center, web development, digital marketing service and remote English education service.

Client Industry:


Job Description and Qualification:

Job Description 
• Perform penetration testing which may include internet, intranet, wireless, web application, social engineering and physical penetration testing. 
• Provide technical leadership or expertise to the team members and project members on attack and penetration test engagements. 
• Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations. 
• Perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations. 
• Execute penetration testing projects using the established methodology, tools and rules of engagements. 
• Convey complex technical security concepts to technical and non-technical audiences including executives. 

Job Requirements 
• Experience with any scripting / programming skills (e.g., Python, PowerShell, Java, Perl, etc) 
• N1 to N2 JLPT linguistic competence level • Any related work experience in penetration testing which includes to any of the following: internet, intranet, web application penetration tests, wireless, social engineering or red team. 
• Experience with manual attack or penetration testing. 
• Updated and familiarized with the latest exploits and security trends. 
• Experience to conduct remote and/or on-site penetration testing within defined rules of engagement. 
• Knowledge of cybersecurity concepts 
• Knowledge of Windows, Linux, Unix, any other major operating systems. 
• Familiarity with the latest exploits, tactics, techniques and procedures (TTP), vulnerability remediation and security trends 
• Understanding of TCP/IP network protocols. 
• Understanding of network security and popular attacks vectors. 
• An understanding of web-based application vulnerabilities (OWASP Top 10). 
• Proficiency in preparing and reviewing process documents: Security Policies and procedures 
• Knowledge of application risks and controls
• Experience in information security risk assessments and gap analysis. 
• Must have excellent interpersonal, written, verbal, communication, and presentation skills 
• Candidates with no work experience doing VAPT are welcome as long as candidates have strong 2 years development and testing experience and highly trainable. 

Good to have (Just a plus): 
• Japanese language skill 
• Experience in maintenance and improvement of Information Security Management System (ISMS) 
• Familiarity to perform network penetration testing in a stealth manner 
• Any of the following certifications: OSCP, OSWP, GPEN, GWAPT, OSCE, OSEE, GXPN. 
• Understanding and experience with various Active Directory attack techniques