Cake Job Search

檢測專案 60%規劃、執行滲透測試專案根據檢測需求，研究相關弱點或開發相關工具與團隊合作，持續思考符合專案與客戶最大利益之執行方式撰寫弱點描述與對應解決辦法 20%撰寫弱點描述與流程評估與撰寫弱點解決辦法複測 10%協助複測專案弱點會議 10%參與專案相關啟動、結案會議協助確認成果簡報 履歷內容請務必控制在兩頁以內（超過兩頁將直接視為資格不符），並且至少須包含以下內容： 基本資料學歷工作經歷MBTI 職業性格測試結果（測試網頁）若您願意提供 MBTI 測驗結果，可讓我們更瞭解您偏好的溝通模式，若您不願意提供，也不影響本次審核結果。

檢測專案 60%規劃、執行滲透測試及紅隊演練根據檢測需求，研究相關弱點或開發相關工具與團隊合作，持續思考符合專案與客戶最大利益之執行方式撰寫弱點描述與對應解決辦法 20%撰寫弱點描述與流程評估與撰寫弱點解決辦法複測 10%協助複測專案弱點會議 10%參與專案相關啟動、結案會議協助確認成果簡報 履歷內容請務必控制在兩頁以內（超過兩頁將直接視為資格不符），並且至少須包含以下內容： 基本資料學歷工作經歷MBTI 職業性格測試結果（測試網頁）若您願意提供 MBTI 測驗結果，可讓我們更瞭解您偏好的溝通模式，若您不願意提供，也不影響本次審核結果。

Cymetrics 是亞洲領先的資安原廠之一，擁有專屬的高端資安產品。我們提供專業的紅隊演練、滲透測試和弱點掃描服務，集結了工程技術與資安專長的團隊。 團隊成員均擁有資安風險管理和滲透測試的專業知識，具有在四大管理顧問公司、領導資安服務商、知名品牌原廠的豐富經驗，且積極參與國際 CTF 競賽，並曾取得世界第三名。我們服務的客戶來自不同產業，包括政府、金融、製造業、高科技和電子商務等等。我們團隊也協助集團獲得 ISO 27001 和 ISO 27017 認證，強化集團資安治理。團隊的核心價值在於創新、專業和協作，以提供高效的資安解決方案。 身為 Cymetrics 的資安工程師，你會擔任紅隊演練、滲透測試的主要攻擊手，深入挖掘弱點，並一同與夥伴一起完成專案。在自有開發的產品中提供專業的想法與意見。一起討論並優化專案執行的成效。 Know more about Cymetrics: https://cymetrics.io/zh-tw/ TechBlog: https://tech-blog.cymetrics.io/ How to apply Please apply for this position through 👉 https://grnh.se/bfdfcf844us It will help us process your applications faster! Our Product 我們的資訊安全團隊 Cymetrics，專注於提供全面的資安評估 SaaS 平台。團隊成員均擁有資安風險管理和滲透測試的專業知識，具有在四大管理顧問公司、台灣領導資安服務商、知名品牌原廠的豐富經驗，且積極參與國際 CTF 競賽，並曾取得世界第三名，2024 年更獲得知名藍隊競賽 HITCON CYBER RANGE 第一名佳績。我們服務的客戶來自不同產業，包括政府、金融、製造業、高科技和電子商務等等。我們團隊也協助集團獲得 ISO 27001 和 ISO 27017 認證，強化集團資安治理。團隊的核心價值在於創新、專業和協作，以提供高效的資安解決方案。 Responsibilities 規劃以及執行紅隊演練、滲透測試，協助客戶發現漏洞並進行改善且驗證修復結果。與客戶進行專案會議，開會溝通，釐清並協助客戶解決問題。協助自動化資安工具開發，與軟體工程團隊一同完成自有 SaaS 產品。與產品開發團隊合作，協助改進資安產品及平台。研究網站或開源專案漏洞，將研究結果寫成文章發佈至公司的技術文章部落格。 Requirements 三年以上紅隊演練、滲透測試，善於對內部網路橫向移動與滲透。對現代 Web 框架（如React, Angular, Vue.js）和客戶端安全弱點（例如XSS, CSRF, CSP bypass, GraphQL等）理解，並熟悉其背後原理。熟悉 OWASP 測試指南和其他安全測試方法，對網頁漏洞、作業系統、網路架構有深入理解，並熟悉其背後原理。能夠清晰地整理和撰寫測試結果及修補建議，並有效地與團隊和客戶溝通。 Plus 對區塊鏈相關的資安技術有興趣 有打過知名廠商 bug bounty 或是參加過國際 CTF 的經驗 (或有同等 CVE 弱點) 擁有 OSWE、OSEP 或 OSCP 證照 (或其它同等資訊安全證照) 擅長撰寫資安相關之技術文章（漏洞研究、CTF writeup 等等） 參與過開源項目，展現對安全社群的貢獻和合作精神。 流利的中英文聽說能力，並與客戶講解滲透測試報告內容。 Cymetrics is one of the leading cybersecurity solution providers in Asia, offering exclusive high-end cybersecurity products. We specialize in professional red teaming, penetration testing and vulnerability scanning services, assembling a team with engineering expertise and cybersecurity specialization. Team members possess professional knowledge in cybersecurity risk management and penetration testing, with extensive experience in major consulting firms, leading cybersecurity service providers, and renowned brand OEMs. They actively participate in international CTF (Capture The Flag) competitions, achieving top three places globally. Our clientele spans diverse industries, including government, finance, manufacturing, high-tech, and e-commerce, among others. Additionally, our team assists the group in obtaining ISO 27001 and ISO 27017 certifications, reinforcing the group's cybersecurity governance. The core values of our team lie in innovation, professionalism, and collaboration, aiming to deliver efficient cybersecurity solutions. As a Cybersecurity Engineer at Cymetrics, you will serve as the primary attacker in red teaming and penetration testing, deeply probing vulnerabilities, and collaborating with partners to complete projects. You will contribute professional insights and opinions to our proprietary product development, engaging in discussions to optimize project execution effectiveness. Know more about Cymetrics:https://cymetrics.io/en-us/ TechBlog: https://tech-blog.cymetrics.io/ Our Product Our cybersecurity team, Cymetrics, is committed to providing a comprehensive cybersecurity assessment SaaS platform. With expertise in risk management and penetration testing, our team includes professionals from Big 4 consulting, leading cybersecurity services provider global banks, and top cybersecurity firms. Cymetrics excels in international CTF competitions, achieving a top-three global ranking and securing 1st place in the prestigious 2024 HITCON Cyber Range blue team. competition. Cymetrics supports clients across government, finance, manufacturing, high-tech, and e-commerce sectors. We’ve also secured ISO 27001 and ISO 27017 certifications for our group. Focused on innovation and collaboration, Cymetrics provides an AI security and LLM verification platform to assess AI models for vulnerabilities and Responsible AI compliance. Responsibilities Planning and executing redteam project and penetration tests, aiding clients in identifying vulnerabilities, verifying remediation, and validating fix outcomes. Conducting project meetings with clients, engaging in effective communication, clarifying issues, and assisting clients in problem resolution. Assisting in the development of automated security tools, collaborating with the software engineering team to complete proprietary SaaS products. Collaborating with the product development team to enhance cybersecurity products and platforms. Researching vulnerabilities in websites or open-source projects and documenting findings in articles published on the company's TechBlog. Requirements Three or more years of practical experience in red teaming, penetration testing and lateral movement in internal networks. Familiarity with modern web frameworks (such as React, Angular, Vue.js) and client-side security vulnerabilities (e.g., XSS, CSRF, CSP bypass, GraphQL). Familiarity with OWASP testing guides and other security testing methodologies, with a deep understanding of web vulnerabilities, operating systems, network architecture, and underlying principles. Ability to articulate and document test results, provide remediation suggestions clearly, and effectively communicate with teams and clients.Fluency in spoken and written English to explain penetration test reports to clients. Plus Interest in blockchain-related cybersecurity technology. Experience in bug bounty programs from reputable companies or participation in international CTFs (or equivalent CVE vulnerabilities).Possession of OSWE, OSEP or OSCP certifications (or other equivalent information security certifications).Proficiency in writing technical articles related to cybersecurity (vulnerability research, CTF write-ups, etc.).Involvement in open-source projects, demonstrating contributions to and collaboration within the security community.Fluency in spoken and written Chinese. How to apply Please apply for this position through 👉 https://grnh.se/bfdfcf844us It will help us process your applications faster!

Job Overview:Cymetrics specializes in delivering a comprehensive cybersecurity assessment SaaS platform. Team members are experts in cybersecurity risk management and penetration testing, with extensive experience at Big Four consulting firms, Taiwan's leading cybersecurity service providers, and renowned international brands. We actively participate in global CTF competitions, achieving world-class accolades, including third place globally and first place in the 2024 HITCON CYBER RANGE competition. Our clients span diverse industries such as government, finance, manufacturing, high-tech, and e-commerce. Additionally, our team has helped secure ISO 27001 and ISO 27017 certifications for the group and developed platforms for AI cybersecurity and Large Language Model (LLM) validation, addressing AI vulnerabilities and ensuring compliance with Responsible AI standards. With innovation, professionalism, and collaboration at our core, we deliver efficient and cutting-edge cybersecurity solutions. Cymetrics 專注於提供全面的資安評估 SaaS 平台。團隊成員均擁有資安風險管理和滲透測試的專業知識，並具有在四大管理顧問公司、台灣領導資安服務商及知名品牌原廠的豐富經驗。團隊積極參與國際 CTF 競賽，並取得全球第三名及 2024 年 HITCON CYBER RANGE 知名藍隊競賽第一名的佳績。我們的客戶涵蓋政府、金融、製造業、高科技及電子商務等多元產業。團隊亦協助集團獲得 ISO 27001 與 ISO 27017 認證，並開發 AI 資安與大語言模型（LLM）驗證平台，以評估 AI 模型漏洞並確保符合負責任 AI 標準。我們團隊以創新、專業和協作為核心價值，致力於提供高效且先進的資安解決方案。 You will play a pivotal role in driving team growth and achieving business success. This position is ideal for individuals with a strong entrepreneurial mindset, capable of independently managing partnerships and client relationships while significantly contributing to the company's revenue. 你將在推動團隊成長和實現業務成功方面發揮關鍵作用。此職位適合具有強烈創業精神的個人，能夠獨立管理合作夥伴與客戶關係，並在提升公司營收上做出重大貢獻。 Know more about Cymetrics: https://cymetrics.io/zh-tw/Cymetrics TechBlog: https://tech-blog.cymetrics.io/ How to apply Please apply for this position through 👉https://grnh.se/b6d318424us It will help us process your applications faster! Our Product Our cybersecurity team, Cymetrics, is committed to providing a comprehensive cybersecurity assessment SaaS platform. With expertise in risk management and penetration testing, our team includes professionals from Big 4 consulting, leading cybersecurity services provider global banks, and top cybersecurity firms. Cymetrics excels in international CTF competitions, achieving a top-three global ranking and securing 1st place in the prestigious 2024 HITCON Cyber Range blue team. competition. Cymetrics supports clients across government, finance, manufacturing, high-tech, and e-commerce sectors. We’ve also secured ISO 27001 and ISO 27017 certifications for our group. Focused on innovation and collaboration, Cymetrics provides an AI security and LLM verification platform to assess AI models for vulnerabilities and Responsible AI compliance. 我們的資訊安全團隊 Cymetrics，專注於提供全面的資安評估 SaaS 平台。團隊成員均擁有資安風險管理和滲透測試的專業知識，具有在四大管理顧問公司、台灣領導資安服務商、知名品牌原廠的豐富經驗，且積極參與國際 CTF 競賽，並曾取得世界第三名，2024 年更獲得知名藍隊競賽 HITCON CYBER RANGE 第一名佳績。我們服務的客戶來自不同產業，包括政府、金融、製造業、高科技和電子商務等等。我們團隊也協助集團獲得 ISO 27001 和 ISO 27017 認證，強化集團資安治理。團隊的核心價值在於創新、專業和協作，以提供高效的資安解決方案。 Responsibilities: Team Growth and Business Development 團隊成長與業務發展: Develop and implement strategies to expand the team's capabilities and expertise. 制定並實施策略以提升團隊能力和專業知識。 Drive revenue growth through proactive engagement with clients and partners. 通過積極與客戶和合作夥伴互動，推動收入增長。 Identify and capitalize on new business opportunities to support the company’s expansion. 發掘並抓住新商機，支持公司的業務拓展。 Partner and Client Management 合作夥伴與客戶管理: Independently manage relationships with partners and clients, ensuring high satisfaction and loyalty. 獨立管理合作夥伴與客戶關係，確保高滿意度和忠誠度。 Address inquiries, resolve concerns, and act as a trusted advisor to clients. 處理客戶問題，解決關切，成為值得信賴的顧問。 Identify and execute upselling and cross-selling opportunities to maximize account potential. 發掘並執行升級銷售與交叉銷售機會，充分挖掘客戶潛力。 Sales Operations and Strategic Planning 銷售運營與策略規劃: Oversee the end-to-end sales process, including lead generation, contract negotiation, and deal closure. 負責從頭到尾的銷售流程，包括潛在客戶開發、合同談判和交易完成。 Utilize CRM tools to maintain accurate records of customer and partner information, sales leads, and progress. 使用CRM工具維護客戶與合作夥伴信息、銷售線索和進展的準確記錄。 Coordinate with internal teams to ensure seamless execution of sales strategies and client deliverables. 與內部團隊協調，確保銷售策略與客戶需求的順利執行。 Collaboration and Cross-Functional Support 跨部門協作與支持: Partner with marketing and technical teams to design impactful sales materials and proposals. 與市場和技術團隊合作，設計有影響力的銷售資料和提案。 Represent the company at industry events, webinars, and conferences to showcase Cymetrics’ solutions. 代表公司參加行業活動、網絡研討會和會議，展示Cymetrics的解決方案。 Provide actionable feedback to improve processes and strategies, ensuring alignment with market trends and client needs. 提供可行的反饋以改進流程和策略，確保與市場趨勢和客戶需求一致。