Senior Penetration Tester

Job Description

Key Accountabilities

• Perform network penetration, web and mobile application testing, source code reviews, threat analysis, wireless network assessments.
• Develop comprehensive and accurate reports representing the findings to higher management.
• Recognize and safely utilize attacker tools, tactics, and procedures
• Assist with the remediation of the discovered findings, and communication of the mitigation methods to different teams

Skills

Knowledge, & Other skills

• Advanced scripting skills – Bash, Python, Perl, Ruby
• Thorough understanding of network protocols, data encryption, and covert channels.
• Knowledge of security and architecture testing and development frameworks, i.e. OWASP, OSSTMM, PTES, ISSAF, and NIST SP 800-115
• Strong knowledge of operating systems – Unix/Linux, Windows, Mac, mobile OS
• Web application development background is a plus

Qualifications & Experience

​​​​​5-8 years of experience in the following:

• Web and mobile application assessments
• Effectively communicating findings with business owners and senior management
• Writing Penetration Testing reports
• Source code review for control flow and security flaws
• Experience with tools used for application, web/mobile application and network security testing

Competencies

• Adaptability/Flexibility
• Computer Skills
• Creativity/Innovation
• Decision Making/Judgment
• Dependability
• Initiative
• Integrity/Ethics
• Internet Savvy
• Managing Technology
• Personal Organization
• Planning
• Problem Solving/Analysis
• Process PRIME postings manually
• Process transaction vouchers received from various Departments (internal)
• Productivity
• Quality
• Receipt and verify the posting and payroll documents received
• Results Focus
• Self Development
• Sense of Urgency
• Strategic Thinking/Management
• Summary
• Technical Skills
• Vision and Values