PenetrationTester

Manulife’s Global Cybersecurity Services - Application Security is building up a penetration testing Centre of Excellence (COE) to deliver penetration test-related capabilities for all segments in Manulife. As a **Penetration Tester** , you will be working closely with our business team and the second line of defense to assess the scope and level of effort based on identified areas of risk and execute assigned engagements in alignment with common penetration testing industry frameworks. Have the skills and experience for the job? Learn more about it below! **_Note: Designation will be finalized after completion of the recruitment processes._** **Position Responsibilities:** * Evaluates the security posture of the organization, assessing potential threats and vulnerabilities in any of the following: * Web Applications and/or Network Security * Microservices * Mobile Applications * Develops and communicates the understanding of the potential impacts of a cyber attack to all relevant stakeholders. * Evaluates different security solutions and provides advice on how to best protect the organization from cyber threats. * Ensures alignment with corporate and regulatory requirements for the management of information security program. * Performs security assessments to identify possible security vulnerabilities within the organization and develops security controls, policies, and procedures to address any issues that may exist. * Conducts comprehensive network scans and manual network assessments, including penetration testing and vulnerability scans. * Write reports including technical details, risk analysis, and providing remediation recommendations for identified issues. **Required Qualifications:** * At least 2 years of IT experience with a demonstrated passion for performing hands-on penetration tests on external and internal networks, operating systems, web applications, etc. * Has technical knowledge of current vulnerabilities, exploits and tools (VAPT, DAST, SAST, an