Comsec is Looking for a motivated individual who is able to learn and research new technologies and vulnerabilities. As a member of the offensive security team, you will be tasked with various different projects including unordinary and proprietary systems. The role requires the ability to perform “by-the-book” penetration tests, but also to research a technology and find potential security vulnerabilities in proprietary systems.
The workflow includes conducting Infrastructure Penetration Tests and Red Team engagements – Performing intelligence gathering, planning and exploitation of various technologies and resources.
Leading application Penetration Tests and architecture reviews.
Conducting offensive security operations such as Phishing, Social Engineering simulations and DDoS.
OSINT, passive and active reconnaissance
Attack planning and execution – Exploiting public facing services, phishing, social engineering, etc.
NAC bypass techniques
Cross-Site Request Forgery
XML External Entities
Server Side Request Forgery
Remote Code Execution
Uploading Web Shells
Deserialization and Object Injection
Comsec is hiring Senior Cyber Security Architecture, Applications
The Senior Consultant will lead the team and conduct ongoing Application Architecture design for our customers.
Comsec is hiring a PCI Security Consultant.
PCI DSS is a detailed and strict standard, published by the PCI SSC, intended to secure credit card data, both at rest and in transit.
PCI DSS also examines information security management as well as secure development processes within the organization or the scoped environment.
PCI DSS applies to entities that store, process or transmit cardholder data and also to entities that might affect the security controls of such environments, for example hosting providers, managed service providers, or remote SIEM/SOC service providers.