This Job Vacancy has Expired!

Senior Security Engineer - Penetration Testing

Posted on Jan 11, 2022 by Request Technology

Not Specified, PR
IT
Immediate Start
$145k - $165k Annual
Full-Time

Senior Security Engineer - Penetration Testing

Salary: $145k-$165k % bonus

Location: Remote, nearby major airport for occasional travel

*We are unable to sponsor for this permanent Full time role*

*Bonus Eligible*

A cybersecurity and networking company that builds and defends global networks is looking for a Senior Security Engineer seasoned in security assessment/penetration testing that will review applications for security, recommend security improvements, and perform remote and local testing of applications.

Qualifications

  • Experience participating in all aspects of application security assessment, including pre-sales and post-delivery discussions with clients
  • Experience validating the output of multiple tools and techniques, and synthesizing those results into actionable findings
  • Ability to communicate well in front of clients while engaged in assessment work; ability to understand complex requirements, and explain complex findings
  • Familiarity with both black-box penetration testing and white-box assessment techniques
  • Experience assessing the security of common application service delivery environments, including dedicated cloud-based platforms
  • Experience performing penetration tests against a variety of operating systems, network architectures, and services
  • 3-5 years' experience performing web and mobile application security assessments
  • Proficiency with common office software packages including MS Word and Excel
  • Proficiency with networking and testing tools including Nexpose, Metasploit, Burp Suite, nmap, Nessus, etc.
  • Detailed understanding of key application security principles
  • B.S. Degree or equivalent work experience
  • Experience advising clients on the security aspects of public and private regulatory regimes and standards (especially HIPAA, PCI, and FISMA) as they relate to applications handling sensitive data
  • Experience working with development teams to address security issues both within the development life cycle and after testing

Responsibilities

  • Meet with clients to explain offerings and gather requirements
  • Formal security assessment of mobile and web applications
  • Security review of service delivery configurations
  • On-site and remote penetration testing
  • Discover and exploit vulnerabilities in applications, APIs, systems, and protocols
  • Document, rate, and explain findings in the context of client systems and requirements
  • Communicate client-focused recommendations for remediating documented findings
  • Work with client developers to review proposed remediations

Reference: 1458807396

Set up alerts to get notified of new vacancies.