PENETRATION TESTER

Do you enjoy hacking stuff? Spike Reply is looking for a skilled Penetration Tester to join its Cyber Security Team.
Apply now!

WHO WE ARE

Spike Reply is “the cybersecurity company”, specialized in consultancy services and integrated solutions.
Spike supports customers in a comprehensive security for the digital transformation and tackling cyber attacks, spanning from GRC to technical aspects, and applying advanced and innovative methods for identifying and analyzing risks, vulnerabilities and threats in order to protect their solutions and organization.
Spike Reply assists enterprises wishing to enhance their security posture while continuing to operate in optimum conditions.

WHAT WE OFFER
You’ll be involved in security activities and projects for primary national and international customers. As a Penetration Tester, you will focus and evaluate the security posture of our customers, by assessing and exploiting vulnerabilities in their applications, embedded products and network infrastructure. Securing large network infrastructures, web portals, mobile applications and embedded/IoT products are just a few of the challenging activities you could jump in and get it done.

You could be part of a very forward-thinking team that works with exciting and future technologies. Instead of experience with specific VA/PT tools, we’re looking for out-of-the-box thinkers that are thrilled by solving new and unforeseen problems. Your job won’t be just running an automated tool: you’ll start where ordinary vulnerability assessments end.

Main responsibilities:

• Perform security tests on
  • Network Infrastructures
  • Mobile Applications
  • Web Applications
  • Embedded/IoT products
• Security audit
  • Code Review
• Red/Purple Team
• Write security assessment reports
• Communicate results to IT team

WHAT WE NEED
Education

• Bachelor or Master Degree in Information Technology, Information Security, or Computer Science

Required skills and experiences

• Scripting and programming (e.g., Python, C, etc.)
• Deep knowledge of main operating systems (e.g., Windows, Linux/Unix, Android, iOS, MacOS)
• Knowledge of OWASP
• Knowledge of networking concepts (e.g. protocols, routing)
• Web application Penetration Testing
• Good presentation and communication skills, with aptitude to teamwork and flexibility
• Italian native language
• English language (oral and written)

Preferred Qualifications

• Training and certification courses in network security and Ethical Hacking
• Participation in Capture The Flag competitions
• Research work experiences or CVEs

 Range RAL 25k-50k to be evaluated

 Contact us at jobs.spike@reply.it

OT CYBER SECURITY SPECIALIST

Do you want to save the world defending critical infrastructures by cyber threats? Spike Reply is looking for a skilled OT cybersecurity specialist to join its Cyber Security Team.

Apply now!

 WHO WE ARE

Spike Reply is “the cybersecurity company”, specialized in consultancy services and integrated solutions. Spike supports customers in a comprehensive security for the digital transformation and tackling cyber attacks, spanning from GRC to technical aspects, and applying advanced and innovative methods for identifying and analyzing risks, vulnerabilities and threats in order to protect their solutions and organization. Spike Reply assists enterprises wishing to enhance their security posture while continuing to operate in optimum conditions.

WHAT WE OFFER
With us you will leverage your technical background and develop new skills in the analysis of complex automation & control environments.

The main goal is to help our customers to gain visibility over production and control networks and extend the protection of critical assets with vertical skills and technological solutions focused on automation and control environments.

Join us as an OT Cyber Security Specialist and focus on its innovative, challenging projects, dedicated to Industrial Security, and without any constraint on involved technologies.

Security activities can be carried out to identify threats in a production plant in the automotive sector, or to assess the safety level of a refinery or gas pipelines or even a dam!

Main responsibilities:

• Vulnerability Assessmenton production plants or critical infrastructures over automation and control assets in order to detect vulnerabilities
• Assessment and Hardeningon Building Management Systems
• Secure Designand Implementation of Industrial networks through segmentation and segregation
• Implementationof protection solutions able to extend the protection in Industrial systems and detect/prevent cyber security attacks

WHAT WE NEED
Education

• Bachelor or Master Degree in Information Technology, Information Security, Automation Engineering or Computer Science

Required skills and experiences

• Deep knowledge of main operating systems (e.g., Windows, Linux/Unix)
• Knowledge of networking concepts (e.g. protocols, routing)
• Knowledge of basic attack vectors in industrial environments
• Knowledge of automation processes implementation, needs and environment
• Good analytical skills and attitude to problem solving
• Good presentation and communication skills, with aptitude to teamwork and flexibility
• Italian native language
• English language (oral and written)

Preferred Qualifications

• Training and certification courses in OT or network security

Range RAL 25k-50k to be evaluated

 Contact us at jobs.spike@reply.it

BLUE TEAM SPECIALIST

Do you enjoy fighting against the growing cybersecurity threats? Would you like being part of a Cyber Defence center? Spike Reply is looking for a skilled Blue Team Security Specialist to join its Cyber Security Team.

Apply now!

WHO WE ARE

Spike Reply is “the cybersecurity company”, specialized in consultancy services and integrated solutions. Spike supports customers in a comprehensive security for the digital transformation and tackling cyber attacks, spanning from GRC to technical aspects, and applying advanced and innovative methods for identifying and analyzing risks, vulnerabilities and threats in order to protect their solutions and the organizations. Spike Reply assists enterprises wishing to enhance their security posture while continuing to operate in optimum conditions.

WHAT WE OFFER
Protecting customers and their infrastructure and data will be your main task, through advanced techniques and tools. You’ll be involved in security activities and projects for enterprise national and international customers. As a Blue Team Security Specialist you will carry on continuous prevention and detection activities, analyzing new threats and their risks and creating all the needed measures to protect our customers.

You will able to work with various security platforms: our defence weapons! The scope you will protect will often include heterogeneous technologies such as IoT devices, IT and OT network infrastructures, web portals, mobile applications, operating systems, databases, domain controllers, etc.

Cyber Threat Intelligence and Breach & Attack Simulation are just a glimpse of thrilling security domains where you can bring your ideas and build innovative models, tools and solutions to apply them in real-world scenarios.

As attackers become more skilled and sophisticated every year, you too will have the chance to build your defensive skills with courses and certifications provided by the most accredited institutions and best-of-breed technology vendors.

Remember, in Spike Reply people who work together always win and also have more fun!

Don’t miss the chance to join our team, learn fast and never get bored.

Main responsibilities:

As Blue Team Security Specialist, you’re responsible of creating, reviewing and refining detection rules in order to provide successful detections as well as performing Threat Intelligence and Threat Hunting operations with the aim of gathering valuable information to identify advanced threats.

• Threat Intelligence
  • Ability to find, analyze and contextualize new threats on OSINT/CLOSINT sources
• Detection, analysis and response to the following security incidents:
  • Malicious code injection
  • Scanning
  • Sniffing
  • Exploiting of known vulnerabilities
  • Brute force
  • Account or application compromise
  • DOS and DDOS attacks
  • Unauthorized access, modification or use of information
  • Spam, Phishing, Malspam, Fraud
• Detection Engineering
  • Define patterns that allow to identify suspicious behaviors within security events coming from IT and OT environments
• Vulnerability Management
  • Identify, prioritize, report and remediate weaknesses and vulnerabilities in IT systems
• Write security incidents reports
• Collaborate with various IT/OT teams

WHAT WE NEED

Education

• Bachelor or Master Degree in Information Technology, Information Security, or Computer Science

Required skills and experiences

• Basic knowledge of concepts behind the most common security technologies (e.g., SIEM Antispam, WAF, IPS/IDS, Web Proxy, Firewall, Endpoint Protection)
• Knowledge of the main operating systems (e.g., Windows, Linux/Unix)
• Knowledge of networking concepts and protocols (e.g., DNS, DHCP, routing)
• Basic scripting capabilities (e.g., Python, PowerShell etc.)
• Good presentation and communication skills, with an aptitude to teamwork and flexibility
• Problem solving skills and Continuous Learning aptitude
• Native Italian language
• Solid knowledge of English (oral and written)

Preferred Qualifications

• Previous experience in cybersecurity and especially in a similar role
• Training and certification about Incident Response and/or Threat Intelligence topics

Range RAL 25k-50k to be evaluated

 Contact us at jobs.spike@reply.it

CYBER SECURITY ARCHITECT

Have you ever dreamed to design and build the security of a brand-new IT Architecture?

Spike Reply is looking for a Security Architect to join its Cyber Security Team.

WHO WE ARE

Spike Reply is “the cybersecurity company”, specialized in consultancy services and integrated solutions. Spike supports customers in a comprehensive security for the digital transformation and tackling cyber attacks, spanning from GRC to technical aspects, and applying advanced and innovative methods for identifying and analyzing risks, vulnerabilities and threats in order to protect their solutions and organization. Spike Reply assists enterprises wishing to enhance their security posture while continuing to operate in optimum conditions.

WHAT THE JOB IS ABOUT

As a Security Architect you will be involved in the following main activities:

• participate in architecting, developing, and adding security to new technologies, IoT solutions, cloud architecture, etc.
• research and design optimal end-to-end security solutions for cloud, orchestration, edge, IoT, networking, microservices, and distributed computing
• make security choices that will impact manageability, scalability, usability, resiliency, availability, and/or safety for software structure, protocols, and algorithms
• create secure architecture for different solutions ranging from automotive to healthcare industry sectors

We are going to support you in building your technical skills with training and certifications, the only requirement is your passion for Cybersecurity.

WHY US

• Never stop learning
  • training and certifications

• Reading groups (… and win the prize …)
• Knowledge sharing
• Advanced Testing Lab with top-notch technology

• feel free to test and play with anything you like

• Stimulating work environment with cool people

Range RAL 25k-50k to be evaluated

 Contact us at jobs.spike@reply.it