Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Senior Penetration Tester

Expired Job

H&R Block, Inc. Kansas City , MO 64126

Posted 2 months ago

Job Description:

H&R Block is seeking an experienced Penetration Tester to conduct full-scope vulnerability assessment and penetration testing. The Penetration Tester must be able to plan, coordinate, and perform red team and penetration testing technical assessments. Maintain communication between system owners and the assessment team, including before, during, and after test events. Develop test plans and perform management and administrative functions for the assessment team, including data gathering, exploit approval, and report generation after test activities. Maintain assessment team processes and procedures and manage the maintenance of the standardized testing platform.

Responsibilities will include:

  • Plan, communicate, coordinate and perform penetration tests and security assessments at application, system and enterprise level.

  • Develop all Rules of Engagement, scoping documents and reports

  • Perform manual penetration tests and validation of vulnerability scan results.

  • Develops automation/scripts for replicating vulnerability validation and penetration tests.

  • Develop SOPs and architect all penetration testing and security assessment methodologies.

  • Devises plans and scenarios for various types of penetration tests.

  • Documents exploits and results in remediation and final report.

  • Perform information technology security research to remain current on emerging technology trends and develop exploits for disclosed and undisclosed vulnerabilities

  • Contributes to developing and implementing tools for penetration testing and early warning of weaknesses or possible incidents building on methodologies as promulgated by NIST, ISO, etc. to ensure useful, measurable, and repeatable methods applied to quantifying risk.

  • Selects, installs, and configures security testing platforms and tools or develop tools and procedures for vulnerability assessments and penetration tests.

  • Contributes to application of FISMA compliance mechanisms, including NIST SP 800 series, with the addition of sound methodologies in lieu of weakly-defined and subjective scores.

  • Performs vulnerability assessments using automated tools (Metasploit, Nmap, Nessus, Burp Suite, etc.)

  • Performs off-hours work as necessary.

Required Skills:

  • Experience in penetration testing large and complex enterprise networks

  • Experience with utilizing penetration testing methodologies

  • Experience with web and mobile applications, databases, operating systems

  • Experience with regulatory compliance, policy development, and policy enforcement

  • Experience with FISMA compliance and the NIST SP 800 series

  • Experience with DISA STIGs or similar secure configuration guidelines.

  • Experience in the roles identified above

  • At least 3+ years of penetration test experience

  • Excellent communication and interpersonal skills

  • Hands-on OS configuration/administration experience

  • Programming experience with focus on penetration testing or process automation

Desired Skills:

  • Experience with cyber security development projects and programs

  • Experience with process development and deployment

  • Experience with the following technologies:

  • Kali Linux

  • Metasploit

  • Nmap

  • Burp Suite

  • Powersploit

  • Qualys

  • Experience with three or more of the following:

  • Security COTS integration

  • Security Incident Event Management

  • Operating System Hardening

  • Vulnerability Assessment testing

  • Identification and Authentication schemes

  • Public Key Infrastructure and Identity Management

  • Cross Domain Solutions

  • Reverse Engineering

  • Security engineering

  • Excellent writing skills

Required Education:

  • Bachelor's Degree in related field. Equivalent experience in military, civil, or corporate continuity planning will be considered.

Desired Certifications:

  • DODI 8570.1-M Compliance at IAT Level II; CISSP, CPT, CEH preferred.
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
QA Tester Kansas City FullTime

Two95 International Inc.

Posted 1 week ago

VIEW JOBS 11/9/2018 12:00:00 AM 2019-02-07T00:00 <p>Title: <strong>Quality Assurance Tester</strong></p> <p>Type: <strong>Full-time</strong></p> <p>Location: Kansas City, MO</p> <p><br></p> <p><strong>Key Skills:</strong> ALM and HP Performance center</p><p><br></p> <p>Quality Assurance Tester with 10 years of IT application development experience of with at the minimum 5 - 8 years of QA testing experience. Highly motivated, always learning and willing to partner with their leadership team, project teams, and clients. They must have a positive attitude that sets the tone for their team. Most importantly, they embrace unique culture by sharing their knowledge and experience with our team through collaboration, group work and peer review. Relies on extensive experience and judgment to plan and accomplish goals. Agile/SCRUM experience is a plus.</p><p><strong>Requirements</strong></p><p>* US citizenship</p> <p>* Bachelor's degree</p> <p>* 3-5 years of experience as a Quality Assurance</p> <p>* Experience with ALM and HP Performance Center</p> <p>* Experience in the creation of SQL scripts</p> <p>* Experience with change management and defect tracking tools JIRA is a plus</p> <p>* Strong interpersonal skills and written communications</p> <p>* High standards of confidentiality; ability to handle sensitive information with integrity and trust</p> <p>* Excellent customer service skills and strong ability to manage business relationships</p><p><br></p> <p><strong>Note:</strong> If interested please send your updated resume and include your rate requirement along with your contact details with a suitable time when we can reach you. If you know of anyone in your sphere of contacts, who would be a perfect match for this job then, we would appreciate if you can forward this posting to them with a copy to us. </p><p><br></p> <p>We look forward to hearing from you at the earliest!</p> Two95 International Inc. Kansas City MO

Senior Penetration Tester

Expired Job

H&R Block, Inc.