Executive Positions
Senior Vice President / Vice President, Security Testing (Red Team) – Singapore Permanent NEW
Lazada (Alibaba Group), the Southeast Asia’s largest online shopping mall is seeking a manager with strong technical background in offensive security: penetration testing and red teaming. Security Testing Team mission is to assess Lazada Cyber Defences. Lazada Security Testing Team is in charge of security testing of applications (web, mobile, internal), systems and infrastructures, Attack simulation (red teaming). What we will offer to you: a lot of challenges working in a DevOps and large-scale environment with technology designed by a top 5 Internet company: Alibaba. A career progression with needed trainings.
Responsibilities:
• Build, manage and lead a team of 3-4 highly skilled penetration testers / red team
• Coach team members and contribute technicallly to penetration testing, security design reviews and red team exercises.
• Permanently improve team output and share progress with management
• Develop automation to maintain efficiency of security testing at large-scale
• Manage Bug bounty program
• Hiring
• Reporting (project, operations and metrics)
• Involvement in Lazada/Alibaba Security community, talk in technical security conferences
Job Requirements
• Minimum of 7 years of experience in offensive security (VAPT, red teaming)
• Strong verbal and written communications skills
• Excellent reporting skills
• Ability to report to technical and non technical audience
• Deep security hands-on skills in web application security
• Strong skills in development (Java, Javascript) and Operating System (Windows/Linux)
• Relevant automation/development experience in Python, bash, Powershell
• Excellent knowledge of attacker techniques, tools and procedures.
• BS degree in Computer Science
• Positive mindset, open-minded and adaptable for a change fast-paced environment
• Strong verbal and written communications skills
• Excellent reporting skills
• Ability to report to technical and non technical audience
• Deep security hands-on skills in web application security
• Strong skills in development (Java, Javascript) and Operating System (Windows/Linux)
• Relevant automation/development experience in Python, bash, Powershell
• Excellent knowledge of attacker techniques, tools and procedures.
• BS degree in Computer Science
• Positive mindset, open-minded and adaptable for a change fast-paced environment
Good to have:
• Experience managing and leading a small team of highly technical penetration testers
• Experience in red team operations
• Good knowledge of Cloud, Linux, Docker, MacOS, MS Windows and Active Directory
• Public disclosure of vulnerabilities or relevant awards/CVEs
• Awarded in CTFs or bug bounty
• OSCP, OSCE, CREST CCWAT/CCSAS/CCSAM/CCTIM, GPEN, GWAPT, GSLC
Shortlisted candidates will be evaluated with a writing and an oral test.