Trabajo de Penetration Application Security Tester en osolot, USA - USA

Penetration Application Security Tester

  • Sueldo

    $ Más de 500,000

  • Lugar

    USA, USA

  • Tipo de puesto

    Empleado de tiempo completo


This position is for our US client based out of Tampa, Florida. Please read through the job description before applying.

Good English communication is a required skill for this position.



Job Requirements and Description


Plan, communicate, coordinate and perform penetration testing, application testing, and security assessments at application, system and enterprise level 
Develop Rules of Engagement, scoping documents and reports 
Perform manual penetration tests and validation of vulnerability scan results 
Develops automation / scripts for replicating vulnerability validation and penetration tests 
Devises plans and scenarios for various types of penetration tests 
Documents vulnerabilities, relevant exploits, and remediations in final vulnerability assessment report 
Perform information technology security research to remain current on emerging technology trends and develop exploits for disclosed and undisclosed vulnerabilities 
Contributes to developing and implementing tools for penetration testing and early warning of weaknesses or possible incidents building on methodologies as promulgated by NIST, ISO, etc. to ensure useful, measurable, and repeatable methods applied to quantifying risk 
Selects, installs, and configures security testing platforms and tools or develop tools and procedures for penetration tests 
Performs penetration testing using standard penetration tools (Metasploit, Nmap, Nessus, Burp Suite, etc. ..) 
Performs off-hours work as necessary

Required Skills: 
Must be eligible to obtain a sensitive clearance Position of Public Trust and may be required to obtain a higher security clearance. 
3-5 years of penetration testing experience is required 
Experience with web and mobile applications, databases, operating systems 
Experience in penetration testing large and complex enterprise networks 
Experience with utilizing penetration testing framework such as OWASP or Miter Att & ck Framework. 
Experience with regulatory compliance, policy development, and policy enforcement 
Experience with FISMA / PCI-DSS compliance, ISO 27000 / NIST SP 800 Frameworks 
Experience in the roles identified above 
4+ years of network or system security 
3+ years of penetration test experience 
Excellent communication and interpersonal skills 
Hands-on OS configuration / administration experience 
Programming experience with focus on penetration testing or process automation 
Experience with the following technologies: 
o Kali Linux 
or Metasploit 
or Nmap 
or Burp Suite

Desired Skills: 
Experience with cyber security development projects and programs for U.S. Government and/or commercial clients 
Experience with process development and deployment 
Experience with the following technologies: 
o Nessus 
o Tenable SecurityCenter 
o HP Fortify 
o IBM AppScan 
o WebInspect 
Experience with three or more of the following: 
o Security COTS integration 
o Operating System Hardening 
o Vulnerability Assessment testing 
o Identification and Authentication schemes 
o Public Key Infrastructure and Identity Management 
o Cross Domain Solutions 
o Reverse Engineering 
o Security engineering 
o Mobile Technologies 
o Cloud Computing 
Excellent writing skills

Required Education: 
Bachelor s Degree in related field. Or in lieu of degree, equivalent experience in military, civil, or corporate areas will be considered.

Desired Certifications (one or more): 
or OSCP, 
or CISSP, 
or CEH preferred.