Get AI-powered advice on this job and more exclusive features.
Responsibilities:
* Conduct penetration tests across Web applications, APIs, Mobile applications, infrastructure, cloud environments, and devices.
* Develop tools and techniques to automate, scale, and accelerate adversary emulation capabilities and vulnerability discovery.
* Identify and document potential vulnerabilities and weaknesses in web applications.
* Provide detailed and actionable recommendations for remediation of identified vulnerabilities.
* Stay up-to-date on the latest web application security threats and mitigation techniques.
* Develop and maintain standard operating procedures and best practices for web application security testing.
* Develop and execute comprehensive penetration testing plans.
* Analyze and interpret test results to provide actionable recommendations for improving security.
* Monitor and analyze web application security logs and reports.
* Collaborate with cross-functional teams to implement security measures and remediate vulnerabilities.
Qualifications:
* A bachelor's degree in Computer Science, Cybersecurity, Information Systems, Information Technology, Engineering, or a related field with at least 5+ years of related work experience in penetration testing.
* Experience with manual attack and penetration testing.
* Experience with scripting / programming skills (e.g., Bash, Python, PowerShell, Java, Perl, Rust, Golang, etc.).
* Familiarity with performing network penetration testing that involves avoiding detection and common alert thresholds on Endpoint Detection and Response (EDR) systems and security monitoring tools.
* Familiarity with the latest exploits, tactics, techniques, and procedures (TTP), vulnerability remediation, and security trends in Cloud implementation.
* Any two of the following certifications: OSCP, OSWP, OSEP, OSCE, OSEE, GPEN, GWAPT, GMOB, GCPN, GXPN, GRTP, GDAT, CRTO, CRTP, CRTE, CREST CRT, CCSAS.
* An understanding of web-based application vulnerabilities (OWASP Top 10).
* Strong analytical and problem-solving abilities.
* Excellent communication skills, both written and verbal.
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Banking, Financial Services, and Investment Banking
#J-18808-Ljbffr