Security and Penetration TesterMy client is a market leading innovative Software Company with a strong global footprint. Their teams are made up of some of the best Subject Matter Experts in their fields. Creating a friendly and open work environment aimed at playing to their employee's strengths they currently have around 1600 employees and are looking to grow this number globally. This is an exciting company to join. They are currently looking for an accomplished Security and Penetration Tester to join the Engineering team. You will be involved in developing the next generation of products and technologies that the company have become globally well known for. You MUST be experienced in penetration testing software products rather than networks. This role will provide the opportunity to exercise all areas of software functionality to detect and report defects which impact security. Additionally you will contribute towards the design and implementation of automated security test systems.To be successful in this role you will need to have an extraordinary technical background and a passion for security related products. You will have broad security knowledge to include operating systems, firewalls, databases, security architectures and network design; having knowledge and practical experience with vulnerability management and penetration tools. Top of FormYou will have the ability to develop deliverables including a penetration test plan, recommendations for security testing activities and report findings making recommendations on product improvement.Bottom of FormEssential:· Proven experience in product security - penetration testing and securing products;· Proven experience of performing application, network, web- application and wireless penetration testing including exploitation;· Reverse engineering, binary analysis, antivirus avoidance, and exploit development;· Strong understanding of open source, freeware, and commercial vulnerability assessment tools;· Extensive experience with penetration testing and fuzzing frameworks;· Experience operating within compliance and governance frameworks (PCI, HIPAA, GLBA, NIST, etc...);· Ability to communicate with other development team members on advanced aspects of subject matter, to deepen the strength and skillsets of the team as a whole;· Ability to work independently or as part of a team as the situation demands;· Project delivery leadership including structuring, planning and controlling projects, project delivery and reporting;· Bachelor's degree or an associate degree in IT/IS/MIS or Computer Science or equivalent experience. Desirable:· Demonstrable skills in common types of penetration testing such as web/application and infrastructure testing, wireless network testing, firewall rule set review;· Proven in depth experience with programming/scripting languages;· Background performing incident response and digital forensics;· Experience performing social engineering assessments;· Technical certifications such as: OSCP, OSCE, GWAPT, GPEN, GCIH, CISSP, CISA, CISM, CEH;· Ability to communicate at all levels within an organization;· Presenting to and liaising with other development team members on findings, methodologies and processes;![]()
↧