Worker Sub-Type:
Regular
Job Description:
Location: KUALA LUMPUR, MALAYSIA
BlackBerry® – the iconic brand you know and trust – is now a market leading security software and services company. As the Internet of Things (IoT) has become the next great wave in business transformation, BlackBerry already secures over 500 million endpoints. We are leading the way with a single platform for securing, managing, and optimizing how intelligent endpoints are deployed in the enterprise, enabling our customers to stay ahead of the technology curve. BlackBerry’s top customers include all the G7 governments, 9 of the top 10 global financial institutions, automotive OEMs, aerospace, defense, healthcare, and media companies. Our mission is “Intelligent Security. Everywhere.”
The position
Red Team Services is a practice within BlackBerry Spark Professional Services who conduct all offensive security focused assessments. The engagements delivered by this group range from results oriented red team assessments to embedded systems reverse engineering and exploitation and everything in between.
The Professional Services - Red Team Security Consultant will deliver consistent, technically sound high-quality engagements. This consultant will deliver many of the core Red Team Services and possess an authority skill level in multiple fields. Consultants must have validated time and project management capabilities. They exercise wisdom, excel at communication and setting expectations, and complete short and long-term red team engagements.
What you will do
Deliver high-quality red team work to critical customers.
Collaborate on research, whitepapers, and conference talks to drive awareness of the practice’s expertise and capabilities
Contribute to tool development, both software and hardware, as well as processes and infrastructure, to advance the capabilities of the practice
Be able to travel to customer locations up to 10%; otherwise, you will work remotely.
Who we are looking for
7 years’ experience as a penetration tester in your area of expertise with experience in consulting preferred with BS/BA
A passion for challenging technical work and the desire to constantly push yourself and excel in both your chosen specialities and new subject areas.
A strong curiosity and desire to discover how a thing works (and how it can be broken) that takes you down the rabbit hole, but also the pragmatism and time management to know when to let it go and try to a different approach.
A desire to share knowledge with your teammates and in turn learn from others.
Strong attention to detail and the compulsion to deliver amazing work as a point of professional pride.
Strong communication and report writing skills, with the ability to succinctly convey technical topics to a non-technical audience.
Exercising good judgement in setting customer expectations, but always meeting those expectations once set.
Deep knowledge in some of the following technical subject areas:
Mobile Application Penetration Testing
Cloud Security (AWS, Azure, GCP, etc.)
Web Application / Web API Penetration Testing
Network Penetration Testing
802.11 Wireless Penetration Testing
Embedded Systems / Hardware Penetration Testing
Social engineering tactics and techniques
Windows/Linux/UNIX/OSX internals
Interpreted languages (Ruby, Python, PHP, etc.)
Compiled languages (Java, C, C++, Assembly, etc.)
Exceptional written and verbal communication skills in both English & Bahasa Malay
Above and beyond
Validated community contributions through published research, CVE’s, conference presentations, publications, media interviews, tool development, etc.
Significant binary and/or hardware reverse engineering experience
Exploit development experience (x86/64 and/or ARM)
#LI-HY1
Scheduled Weekly Hours:
40