PRINCIPAL CONSULTANT

Publication Date: Sep 3, 2024

Ref. No: 519627

Location:

Kuala Lumpur, MY, 50450

Eviden, part of the Atos Group, with an annual revenue of circa € 5 billion is a global leader in data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with 47,000 world-class talents, Eviden expands the possibilities of data and technology, now and for generations to come.

Position:Principal Consultant

JOB DESCRIPTION FOR PRINCIPAL CONSULTANT

As a Principal Consultant, you will be responsible to provide expert cyber security technical advice, guide and support delivery consultants. A strategic thinker that has good people and time management skills to oversees and deployment of security consultants tasked to projects.

Roles and responsibilities

• Understanding, accessing and provide expertise advise at technical and business process level.

• Provide encouragement and leadership in mentoring consultants for their development and progression;

• Evaluate and approve security plan and reports;

Skills and experience

• Over 8 years of security experience

• Bachelor Degree in Computer Science or equivalent

• OSCP, CRT, CCT, Other offensive security certificates an asset

• Strong experience performing compliance testing of mobile applications that meet certain Technology Security Standards and regulatory/industries requirements, eg MAS TRM, OWASP MSTG

• In-depth knowledge of iOS/android architecture and their underlying security mechanisms

• Experienced with performing secure code review of Swift / Kotlin/Objective-C and Java applications.

• Proficient with various reverse engineering tools such as IDA Pro, Ghidra, as well as Frida.re hooking framework or equivalent.

• Knowledge of RM architectures (armeabi-v7a, arm64-v8a, etc) as plus

• Ideal candidate will also have experience bypassing various security mechanisms commonly present in mobile applications (SSL pinning, root/jailbreak detection, anti -tampering, in-app VPN, etc).

• Ability to develop BURP extensions to aid with mobile and web application tests.

• Web Application Pentest • Source code review

• Infrastructure pentest

• Knowledge of industry standards and best practice for IT management and cyber security

• Proficiency in written and spoken English

• Ability to lead and manage a team.

#Eviden

#LI-Malaysia

Let’s grow together.