TIER3 isn't an ordinary company. We do not do ordinary. We are not looking for ordinary. We are disruptors, hackers, hunters, rule-breakers, scientists and innovators.
Think you're good enough? Do you like working in the domain of Cyber Security. Are you passionate about cyber security challenges in information technology associated with threats and vulnerabilities ? Are you a subject matter expert looking for an enriching experience to build your career ?
Software Security Engineer
Islamabad - Pakistan
As a Specialist Master within our Cyber Risk team, you will:
• Work with clients to mitigate cyber risk and threats
• Organize and deliver services on a cross-section of projects
• Maintain technical knowledge within industry and service line and leverage
deep subject matter knowledge on engagements
• Contribute to the development and cultivation of business and vendor
relationships
• Serve as a “Subject Matter Expert”, adding interpretive
value to data presented or experienced insight into a functional process or
issue
• Display business judgment in anticipating client/project needs and developing
alternative solutions
• Identify opportunities for other Tier3 services offerings that can
address client needs
• Responsible for managing solutions, delegating resources, and helping
to ensure quality assurance principles are met across projects and deliverables
• Supervise the work of team members and supports delivery teams and staff
• Actively participate in staff recruitment and retention activities providing
input and guidance into the staffing process
• Researching, designing, implementing and managing software programs
• Writing, testing, and implementing code on sprints
• Malware Analysis / Exploitation Experience
Required:
• Bachelor’s Degree in Information Technology, Information Systems
Security, Cybersecurity, or related field
• 5+ years of relevant consulting or industry experience
• 2+ years in a technical or functional lead role
• Experience mentoring and coaching others
• Proven leadership skills demonstrating strong judgment, problem-solving,
and decision-making abilities
• Experience managing senior-level client relationships
• Experience presenting to clients or other decision makers to present
and sell ideas to various audiences (technical and non-technical)
• Pre-sales, proposal, and RFP experience
• Must be able to obtain and maintain required security clearance
for this role
Exploit Developer
Pakistan
- Deep understanding of compiler technology and code generation (LLVM)
- Knowledge of operating system internals for Windows, Linux or macOS
- Knowledge of exploitation techniques and mitigations
- Experience in reverse engineering/penetration testing or capture the flag environments
- Develop and debug a custom code generation backend (MOSDEF-LLVM) along with a portable custom minimal libc
- Build a next generation application architecture including graph databases and massive internet-scale scan data
- Design an exploitation framework around rapid development for a wide variety of exploit types and target platforms
- Be excited about automation and ML technology as applied to penetration testing frameworks
- Test and iterate on everything you do
Qualifications
- Bachelor’s degree in Computer Science, Information Security or equivalent work experience
- Minimum of 4 years of professional experience in Security/Software Engineering as a Software Engineer, Exploit Developer or Security Engineer/Researcher
- Fast learner who does not shy away from solving complex software engineering problems with modern (and sometimes buggy) new platforms
- Extensive knowledge of Python, C ++, Go Lang, Assembly (x86, x86-64, ARM)
Preferred
- Experience in penetration testing, enterprise security, software exploitation or capture the flag environments
- Deep understanding of compiler technology and code generation (LLVM)
Penetration Tester
Islamabad - Pakistan
Who We Seek:
- Passion Seekers. You genuinely care about the work that you do and its impact on society .
- Self-Starters. You’re a go-getter who isn’t afraid to step up and disrupt the status quo.
- Entrepreneurs. You bring fresh ideas to the table, work hard, develop business and consistently seek new challenges.
- Collaborators. You’re a great contributor to a high performing team that accomplishes great feats for our clients.
What You Will Do:
Independently perform penetration tests on computer systems, networks, applications, and appliances. Search for different weakness and areas of concern in configurations and throughout known vulnerabilities/weaknesses within a network. Pinpoint different methods and entry points that attackers may use to exploit these vulnerabilities or weaknesses. Research, analyze, document, and discuss vulnerabilities/weaknesses found with senior leadership and cyber security teams. Conduct different types of red and purple teaming exercises across the network to include wireless networks and other peripheral devices. Perform Open-Source Intelligence (OSINT) gathering.
Job Duties:
- Provide technical knowledge and analysis of highly specialized applications and operational environment.
- Provides our valuable clients with thorough assessments that emulate real world attacks to ensure environments are secure.
- Go beyond vulnerability identification and provide clients with Security Control feedback and provide recommendations on how to best secure an environment.
- Provide high-level functional systems analysis.
- Apply principles, methods, and knowledge of cyber security to specific task order requirements, advanced principles and methods of difficult and/or narrowly defined technical problems in cybersecurity.
- Assist other senior consultants with analysis and evaluation and with the preparation of recommendations for system improvements, optimization, development, and/or maintenance efforts in related domains.
Desired Skills:
- Minimum of 2 years specialized experience in penetration testing or experience responding to Advanced Persistent Threat (APT) type incidents for large enterprises as a member of an incident response team.
- Demonstrated experience creating novel, reusable, exploits for disclosed and undisclosed vulnerabilities.
- Well-rounded background in application, network, and system security.
- Able to conduct and speak to OSINT, social engineering, and physical pen-testing.
- Understanding of OWASP Top 10/NIST Standards.
- Familiarity with proxy tools (Burp Suite/ZAP).
- One or more of the following certifications:
- Exploit Researcher and Advanced Penetration Tester (GXPN),
- GIAC Penetration Tester (GPEN),
- Licensed Penetration Tester (LPT),
- Offensive Security Certified Expert (OSCE),
- Offensive Security Certified Professional (OSCP),
- Offensive Security Exploitation Expert (OSEE) or another comparable certification.
- Proficient experience using a scripting language such as PowerShell, Python, Ruby, or Perl for penetration testing or incident response.
- Demonstrated experience utilizing at least one or more of the following frameworks:
- Metasploit, Core Impact, Immunity Canvas, Cobalt Strike, Scythe or any similar Pen Testing tool.
- Effective written and verbal communication.
Two years of experience + additional years of experience in lieu of Penetration testing.
Years of Experience: 2
Minimum Education Required: Bachelor’s Degree
Cyber Security Attack Surface Analyst
Islamabad - Pakistan
Key Role:
Identifying and Mapping the Attack Surface. Measuring and Assessing the Cyber security Attack Surface. Managing the Attack Surface. A candidate be able to identify the valuable data (e.g. confidential, sensitive, regulated) in the application, by interviewing system developers and users of the system, and again by reviewing the source code.
Be able to follow the flow of control and data through the system, see how information is validated and where it is stored, what resources are touched and what other systems are involved.
Be able to build up a picture of the Attack Surface by scanning the application. Competent with tools like OWASP ZAP, Arachni, Skipfish, w3af etc use them for dynamic testing, vulnerability scanning and to crawl apps and map the parts of the application that are accessible over the web. Mitigate (WAFs) to be able to export a model of the application's entry points. This position is located in Pakistan
Basic Qualifications:
- 4+ years of experience with working in Cyber Security Operations at Analyst or Penetration tester position.
- 2+ years of experience with analyzing training needs logs and performing training gap analysis
- Experience with working in Command and Control environments to develop and deliver operationally relevant information
- Experience with developing reports, vulnerability management, and relevant material
- Ability to function individually and as part of a team
- Security clearance (May be required)
Security Clearance:
Applicants selected will be subject to a security investigation and may need
to meet eligibility requirements for access to classified information.
Desired Skills:
Four years of experience + 4 additional years of experience in lieu of Cyber Security.
Certifications: Optional (Optional)
Minimum Education Required: Bachelor’s Degree
Flutter Developer
Islamabad - Pakistan
Flutter Developer Roles and Responsibilities
- You will be building and shipping robust apps to Android/ iOS devices using a single codebase.
- You will be writing readable and clear code using Dart that will be extensively documented for future use and upgrades.
- You will be sharing feedback and brainstorming ideas with teams to improve the development process.
- Understand basic concepts of design for developing user friendly applications.
- Stay up to date with the latest technologies.
Expectations in the first week
- Understand the various practices and processes followed in the team.
- Familiarize yourself with the different stacks and products.
Expectations in the first month
- Build a codebase using Dart for one product feature.
- Document and run tests to enhance product performance.
Expectations in the first six months
- Take feedback and improve the codebase for future upgrades.
- Lead development initiatives for other features.
Flutter Developer Skills and Qualifications
Basic
- Experience in development of Android/iOS applications and have deployed them on Google Play/App Store.
- 3+ years knowledge in mobile app development.
- In depth understanding of front end languages like HTML, CSS3 and JavaScript.
- In depth understanding of Object Oriented programming languages like Java and C++.
- Familiarity using version control tools like Git, Subversion etc. and IDEs like Android Studio, VS Code etc.
- Understanding of the Agile Software Development Life Cycle and been exposed to Scrum projects.
- Knowledge of Dart programming language, Rest APIs and integration of various APIs from third parties.
- Comfortable using test cases for debugging code, enhancing performance and reliability.
Preferred
- Experience working remotely and coordinating tech initiatives with different teams to deliver projects.
- Worked at any stage startup or have developed projects of their own ideas.
Cyber Security Analyst
Islamabad, Pakistan
If you are a proactive person with a strong dedication, take pride and ownership in your contribution, have excellent attention to detail and want to be part of a growing organization, this could be your next long term role.
Needs:
- Responding to technical security questions and concerns from clients
- Monitoring and analyzing logs and alerts from a variety of different technologies (IDS/IPS, Firewall, Proxies, Anti-Virus, etc), across multiple platforms
- knowledge of current trends
- Creating comprehensive security write-ups which articulate security issues, analysis and remediation techniques
- Conducting research on emerging security threats and potential customer impact
Offer:
- Great job in a reputable company
- Interesting projects for leading brands
- Opportunity for professional development
- Attractive salary
Join us and work in Cyber Security projects
for the biggest brands in the world