Job Requirements

1、 Have experience in large-scale practical projects, Red/Blue Army [Red Team/Blue Team] team members are preferred;
2、Have programming experience, proficient in using C/C++/C#/Java/Go/Python among them One or more languages as the main development language; . Understand the common basic Web+app and system vulnerability exploitation principles, and be familiar with the intranet penetration process;
3、Have a certain understanding of various killer-free methods and mainstream EDR/AV killing mechanisms, and have experience Better experience in actual anti-kill confrontation
4、Able to explore enterprise security risk blind spots from an attacker’s perspective and provide effective and implementable security solutions
5、Have operational analysis related to security products. Threat hunting experience is preferred;
6、Strong interest in network security work and good communication and teamwork skills

Job Responsibilities

1、Responsible for offensive and defensive penetration of the company’s key systems and critical infrastructure.
2、Vulnerability mining and Exp writing, working closely with the R&D team to improve the security level;
3、Discovering security risk breeding points and testing overall security protection capabilities from an attacker’s perspective, assisting the R&D team in improving product security detection and protection capabilities;
4、Following up the latest APT attacks Techniques and sorting out TTPs provide suggestions