Server or systems administrators maintain the computer networking system in an office environment by tracking server activity, testing PHP/web application for security, performing upgrades of software, maintaining computer hardware, addressing questions about technical problems, and improving efficiency by evaluating system network functions. Most work is completed during regular business hours. Occasionally, with new system upgrades or server fixes, work must be completed during odd hours of the night or on weekends. This is when traffic to a Website or office activity will be at its lowest and thus have less of an impact on business.
** บริษัทมีออฟฟิศอยู่ที่กรุงเทพมหานครและจังหวัดมหาสารคาม สามารถทำงานที่จังหวัดมหาสารคามได้
Test and report PHP/web application security
Thorough understanding of potential attack vectors such as XSS, injection, hijacking, social engineering, and so on.
Thorough understanding of cryptographic primitives and their underlying principles.
Sound command of Linux and the command line.
Thorough understanding of networking protocols, such as TCP/IP.
Thorough understanding of HTTP and HTTPS, as well as their underlying implementations.
Thorough understanding of Content Delivery Networks and their integration into applications.
Basic programming proficiency, sufficient to write and execute scripts from the command line.
Active in the security community. Regularly attends meetups or conferences.
Contributes to open source projects, or creates purpose built tools for security work.
Working understanding of Agile Development processes.
Excellent communication skills. Ability to translate complex ideas into simple solutions on paper.
Actively look for security vulnerabilities in our application and network, reporting issues and describing possible solutions.
Design and maintain our security infrastructure.
Stay up to date with security news, keeping an eye out for the latest vulnerabilities and remedies emerging in the field.
Actively liaise with the development team to ensure a secure architecture.
Actively liaise with the development team to ensure thorough automated testing of all source code (e.g., via Test-Driven Development).
Provide regular reports auditing our current services and latest changes, as well as our internal practices.
Monitor our server traffic, ticketing and reporting unusual packets.