I should have an broad yet shallow experience in white-box security testing of Linux based devices, micro-service style architecture, container based deployments and REST APIs.
You should be able to understand complex security requirements and technical controls in the context of the product, and be creative with test plan, test cases, covering all the gamut of corner and remote use-cases.
You should possess good knowledge on Linux operating system, services, networks, tools, protocols, etc.
Having knowledge of scripting and writing automated test suits is a plus.
Having knowledge of using Cyber kill-chain and MITRE ATT&CK frameworks is a plus.
You should be good at demonstrating, documenting and reporting test results.
You're self-motivated, self-driven and a good communicator.
And ready to learn on the go!
Expectations:
You have at least 7 years of relevant experience and 3+ years working with devices, operating systems, micro-service style architecture, containerized deployments, hand-held devices and REST APIs.
You have strong prior experience in white-box security testing.
You to have prior working experience in large-complex domains.