vCYBERIZ

VAPT Specialist

Collaborate with global leadership to deliver Vulnerability Assessment and Penetration Testing (VAPT) services for global customers, covering presales, consulting, implementation, service delivery, and service operations. The role focuses on application, infrastructure, mobile, and API security testing while ensuring alignment with industry best practices and high customer satisfaction.

Job Description

On-Site
vCyberiz Sdn Bhd, Selangor, Malaysia

Team: Presales/Consulting/Operations/Service Delivery

Designation: VAPT Specialist

Job Role: Collaborate with global leadership to deliver Vulnerability Assessment and Penetration Testing (VAPT) services for global customers, covering presales, consulting, implementation, service delivery, and service operations. The role focuses on application, infrastructure, mobile, and API security testing while ensuring alignment with industry best practices and high customer satisfaction.

Experience: 6+ years

Job Location: vCyberiz Sdn Bhd, Selangor, Malaysia

Shifts: Day shift with flexibility for extended support and on-call requirements

Essential Technical skills:
  • Extensive experience performing static and dynamic application security testing using industry-standard tools and methodologies.
  • Strong experience conducting infrastructure, network, and host-based vulnerability assessments.
  • Hands-on experience using vulnerability scanning and security testing tools such as Tenable, Qualys, Burp Suite, and Metasploit.
  • Experience integrating security testing mechanisms with industry best practices such as OWASP and NIST.
  • In-depth experience in mobile application security testing and API security testing.
  • Strong understanding of system security vulnerabilities, remediation techniques, and secure development standards.
  • Experience providing gap analysis services and security recommendations to business and technology stakeholders.
  • Solid understanding of IT security policies, procedures, design, and implementation.
  • Experience working with compliance and security models such as ITIL, ISO 27002, PCI DSS, and COBIT 5.
  • Hands-on experience installing, configuring, and managing Tenable IO, Nessus Agents, and Qualys environments.
  • Experience integrating security tools with enterprise services such as LDAP, Active Directory, and CyberArk.
  • Ability to document procedures, configurations, and operational instructions for vulnerability management platforms.

Non-Technical Skills

  • Strong ability to communicate technical security findings clearly to both technical and non-technical stakeholders.
  • Effective interpersonal and team management skills, with the ability to collaborate across departments and global teams.
  • Ability to balance competing priorities while maintaining focus on customer needs and service quality.
  • Proactive mindset towards continuous improvement, learning, and adoption of security best practices.
  • Strong analytical skills with the ability to assess impact and risk across systems and environments.
  • Ability to produce clear status reports and updates on weekly and monthly basis for management and customers.

Skills

VAPT ServicesApplication SecurityInfrastructure SecurityMobile SecurityAPI SecurityVulnerability ManagementSecure DevelopmentCustomer ManagementService DeliveryTeam LeadershipOWASPNISTTenableQualysOSCPLPTCREST

Note: Only accepts pdf files (max 10MB)