G5 Cyber Security - Data security and privacy consultants.

Careers

G5's clients can connect with security researchers locally and internationally to identify security vulnerabilities across their network.

Join a great team

At G5, all consultants are supported to live balanced, healthy lives while supporting us to deliver fantastic value to our clients and positively contribute to society.

we are focused on delivering amazing and meaningful services, and we want people who genuinely believe in being great themselves.

  • Learn about Cyber Security

  • Expand your experience and knowledge

  • Develop strong relationships

  • Support business in multiple countries and regions

Good qualities to have

A few traits we appreciate in candidates

Be honest and of integrity

Own your development

Respect yourself and others

Be bold, think big

Be trainable

Be emotionally intelligent

Our interests

Roles which we are continuously open to discussing with talented candidates.

Location

Remote

Levels

Entry-level to Senior:

Job description

You would be supporting our clients to meticulously assess the security posture of their web applications and websites.

You would be required to have or develop a strong responsibility for your personal development, which would be supported by us.

Useful knowledge

Good to have but not mandatory, basic to advanced knowledge of the following:

  • Computer networking and how web applications support businesses.
  • The HTTP protocol, popular web technologies and their associated vulnerabilities and issues.
  • The various Penetration Testing approaches and methodologies, especially the OWASP Testing Guide, OWASP ASVS and other content from OWASP.
  • PCI DSS - The Payment Card Industry Data Security Standard
  • General knowledge of NIST's Security Standards.
  • Vulnerability databases and rating schemes and how it applies to Penetration Testing. e.g. NVD, CVE, CVSS

Useful skills

Good to have but not mandatory, basic to advanced skills of the following:

  • Practical experience in Penetration Testing or Web Development.
  • Experience using, administering, and troubleshooting Linux and Windows web related environments.
  • Practical experience using web security tools like proxies, web vulnerability scanners. Burp Suite, Nessus, Nmap, and Metasploit
  • Practical experience using common security tools. e.g. nmap, sslscan, dirbuster, hydra, Metasploit.
  • Practical experience using a programming language. Ideally: Python, Ruby, Bash, PHP, Perl, C, or C++
  • Good written, verbal and presentational communication skills as part of collaborating with clients and team members towards developing the business.

Qualifications

Good to have but not mandatory.

  • OSCP, OSCE
  • eJPT, eWPT, eWPTX, eCPTX, eCPPT, eNDP, eWDP
  • Pentest+, Security+
  • GPEN, GWAPT, or GXPM
  • SSCP, CISSP, CSSLP
  • ASc., BSc.

Responsibilities

  • Identify and validate new security vulnerabilities and issues.
  • Assess the adequacy and effectiveness of existing security controls.
  • Report findings with clarity, relevance and impact for clients.
  • Contribute to developing test cases where necessary to support our different security testing and assessment services.
  • Document and organise project tasks and findings appropriately, clearly, and accurately to support internal reviews and quality assurance.
  • Maintain good security awareness, stay informed of current industry developments, vulnerabilities, and opportunities.

Perks

  • Healthy work-life balance
  • Flexible working environment
  • Training opportunities
  • Qualification sponsorship
  • Negotiable support
  • Collaborative, creative, and positive culture
  • Incentive system
  • Competitive remuneration

Location

Remote

Levels

Entry-level to Senior:

Job description

You would be supporting our clients to simulate attacks against their corporate IT network to identfy security vulnerabilities and issues..

You would be required to have or develop a strong responsibility for your personal development, which would be supported by us.

Useful knowledge

Good to have but not mandatory, basic to advanced knowledge of the following:

  • Computer networking and how web applications support businesses.
  • The HTTP protocol, popular web technologies and their associated vulnerabilities and issues.
  • The various Penetration Testing approaches and methodologies, especially the OWASP Testing Guide, OWASP ASVS and other content from OWASP.
  • PCI DSS - The Payment Card Industry Data Security Standard
  • General knowledge of NIST's Security Standards.
  • Vulnerability databases and rating schemes and how it applies to Penetration Testing. e.g. NVD, CVE, CVSS

Useful skills

Good to have but not mandatory, basic to advanced skills of the following:

  • Practical experience in Penetration Testing or Web Development.
  • Practical experience using open source and commercial security assessment tools (e.g. Core Impact, Nmap, Metasploit, and Nessus).
  • Experience using, administering, and troubleshooting Linux and Windows web related environments.
  • Practical experience using security OSs and tools. e.g. Kali Linux, Nexpose, Nessus, Burp Suite, Core Impact, Metasploit, etc.
  • Practical experience using common security tools. e.g. nmap, sslscan, dirbuster, hydra, Metasploit.
  • Practical experience using a programming language. Ideally: Python, Ruby, Bash, PHP, Perl, C, or C++

    • Qualifications

    Good to have but not mandatory.

    • OSCP, OSCE
    • eJPT, eWPT, eWPTX, eCPTX, eCPPT, eNDP, eWDP
    • Pentest+, Security+
    • GPEN, GWAPT, or GXPM
    • SSCP, CISSP, CSSLP
    • ASc., BSc.

    Responsibilities

    • Identify and validate new security vulnerabilities and issues.
    • Assess the adequacy and effectiveness of existing security controls.
    • Report findings with clarity, relevance and impact for clients.
    • Devises plans and scenarios for various types of penetration tests
    • Supports developing Rules of Engagement, scoping documents and reports.
    • Contribute to developing test cases where necessary to support our different security testing and assessment services.
    • Selects, installs, and configures security testing platforms and tools or develop tools and procedures for penetration tests
    • Maintain good security awareness, stay informed of current industry developments, vulnerabilities, and opportunities.
    • Document and organise project tasks and findings appropriately, clearly, and accurately to support internal reviews and quality assurance.

    Perks

    • Healthy work-life balance
    • Flexible working environment
    • Training opportunities
    • Qualification sponsorship
    • Negotiable support
    • Collaborative, creative, and positive culture
    • Incentive system
    • Competitive remuneration

    Location

    Remote

    Levels

    Entry-level to Senior:

    Job description

    You would be supporting to research both offensive and defensive Cyber Security, cyber crime, malware, and develop our internal security intelligence for both internal and external purposes.

    You would be required to have or develop a strong responsibility for your personal development, which would be supported by us.

    Useful knowledge

    Good to have but not mandatory, basic to advanced knowledge of the following:

    • Computer networking and how web applications support businesses.
    • The HTTP protocol, popular web technologies and their associated vulnerabilities and issues.
    • The various Penetration Testing approaches and methodologies, especially the OWASP Testing Guide, OWASP ASVS and other content from OWASP.
    • PCI DSS - The Payment Card Industry Data Security Standard
    • General knowledge of NIST's Security Standards.

    Useful skills

    Good to have but not mandatory, basic to advanced skills of the following:

    • Practical experience in reverse engineering tools (disassemblers, decompilers, debuggers) and processes (unpacking malware, reconstructing code logic, etc), Security Administration, Penetration Testing, or Web Development.
    • Experience using, administering, and troubleshooting Linux and Windows environments.
    • Practical experience using security OSs and tools. e.g. Kali Linux, Nexpose, Nessus, Burp Suite, Core Impact, Metasploit, etc.
    • Practical experience using common security tools. e.g. nmap, sslscan, dirbuster, hydra, Metasploit.
    • Practical experience using a programming language. Ideally: Python, Ruby, Bash, PHP, Perl, C, or C++
    • Document and organise project tasks and findings appropriately, clearly, and accurately to support internal reviews and quality assurance.

    Qualifications

    Good to have but not mandatory.

    • OSCP, OSCE
    • eJPT, eWPT, eWPTX, eCPTX, eCPPT, eNDP, eWDP
    • Pentest+, Security+
    • GPEN, GWAPT, or GXPM
    • SSCP, CISSP, CSSLP
    • ASc., BSc.

    Responsibilities

    • Produce high-quality threat intelligence reporting for different audiences, including actionable mitigation and detection guidance.
    • Identify and validate new security vulnerabilities and issues.
    • Assess the adequacy and effectiveness of existing security controls.
    • Report findings with clarity, relevance and impact for clients.
    • Contribute to developing test cases where necessary to support our different security testing and assessment services.
    • Document and organise project tasks and findings appropriately, clearly, and accurately to support internal reviews and quality assurance.
    • Maintain good security awareness, stay informed of current industry developments, vulnerabilities, and opportunities.

    Perks

    • Healthy work-life balance
    • Flexible working environment
    • Training opportunities
    • Qualification sponsorship
    • Negotiable support
    • Collaborative, creative, and positive culture
    • Incentive system
    • Competitive remuneration

    Location

    Remote

    Levels

    Entry-level to Senior:

    Job description

    You would be supporting our clients to meticulously assess the security posture of their web applications and websites.

    You would be required to have or develop a strong responsibility for your personal development, which would be supported by us.

    Useful knowledge

    Good to have but not mandatory, basic to advanced knowledge of the following:

    • General and broad knowledge of computer networking, infrastructure and devices.
    • General and broad knowledge of security processes, roles and functions.
    • General and broad knowledge of security frameworks and methodologies.
    • General and broad knowledge of web technologies

    Useful skills

    Good to have but not mandatory, basic to advanced skills of the following:

    • Disciplined and organised in your approach to work.
    • Creative and innovative towards finding solutions to both technical and non-technical issues.
    • Writes, speaks and presents well.
    • Embraces the process to research and document findings in a relevant way.

    Qualifications

    Good to have but not mandatory.

    • OSCP, OSCE
    • eJPT, eWPT, eWPTX, eCPTX, eCPPT, eNDP, eWDP
    • Pentest+, Security+
    • GPEN, GWAPT, or GXPM
    • SSCP, CISSP, CSSLP
    • ASc., BSc.

    Responsibilities

    • Monitor, evaluate and analyze security incidents.
    • Collaborate in how we design, implement and optimize our security operations
    • Continuously improve the security of our IT infrastructure
    • Administer security awareness sessions for clients.
    • Document and continuously update security processes, and guides.
    • Assess the security of related third-parties and collaborate with them to meet security requirements.

    Perks

    • Healthy work-life balance
    • Flexible working environment
    • Training opportunities
    • Qualification sponsorship
    • Negotiable support
    • Collaborative, creative, and positive culture
    • Incentive system
    • Competitive remuneration

    Location

    Remote

    Levels

    Entry-level to Senior:

    Job description

    You would be supporting our clients to assess business risk and their relation to security compliance requirements.

    You would be required to have or develop a strong responsibility for your personal development, which would be supported by us.

    Useful knowledge

    Good to have but not mandatory, basic to advanced knowledge of the following:

    • Functional knowledge of privacy and security compliance requirements and standards (GDPR, PCI, SOX, HIPAA)
    • Functional knowledge of risk management processes, frameworks, and approaches. (e.g. NIST RMF, ISACA Risk IT, ISO/IEC 27005)
    • General knowledge of IT Governance frameworks and approaches (e.g. COBIT, TOGAF, COSO)
    • General knowledge of computer networking, infrastructure and devices.
    • General knowledge of security processes, roles and functions.
    • General knowledge of security frameworks and methodologies.
    • General and broad knowledge of web technologies

    Useful skills

    Good to have but not mandatory, basic to advanced skills of the following:

    • Practical experience in assessing various forms of business risk.
    • Practical experience designing high-level controls to address forms of business risk.
    • Experience using, administering, or troubleshooting Linux and Windows environments.

    Qualifications

    Good to have but not mandatory.

    • CIPP, CIPM, CIPT
    • Security+
    • SSCP
    • ASc., BSc., MSc.

    Responsibilities

    • Collaborate with clients to help assess risk and compliance exposures and obligations for both laws and regulations.
    • Collaborate with clients to perform detailed risk, privacy and compliance assessment supported by concise impactful risk reduction recommendations to guide their business initiatives.
    • Participate in meetings with clients covering functional and technical requirements.
    • Work with architecture teams to understand enterprise solutions and impacts on security controls.
    • Document and organise project tasks and findings appropriately, clearly, and accurately to support internal reviews and quality assurance.
    • Maintain good security awareness, stay informed of current industry developments, vulnerabilities, and opportunities.

    Perks

    • Healthy work-life balance
    • Flexible working environment
    • Training opportunities
    • Qualification sponsorship
    • Negotiable support
    • Collaborative, creative, and positive culture
    • Incentive system
    • Competitive remuneration

    Reach us

    Let's discuss your thoughts

    Schedule a Service Consultation

    Request a meeting slot to find out how G5 can support your Cyber Security goals.

    Schedule a Consultation

    Visit the Help Central

    Get answers and support for all our services and projects through our online help desk.

    Visit Help Central

    Our online brands help people like you every day

    Categories

    Sectors

    Resources

    Support