Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Senior Security Consultant - Penetration Tester

Expired Job

MAP SSG New York , NY 10004

Posted 2 weeks ago


Penetration Tester will assist in delivering security consulting engagements of various types, e.g. penetration tests, security architecture and configuration reviews, etc.
APenetration Testeris expected to keep up to date with the latest IT Security developments, news and attack techniques and to ensure the wider team receive and understand this knowledge.
Penetration Testerswill receive special focus from Principal Security Consultants in order to assist their progress, but emphasis is also placed on self-study and a desire to learn.
There will be a requirement to lead small to medium projects and to help mentor Junior Penetration Testers and Security Consultants.
A Penetration Tester must work towards attaining upper level industry certification such as the Offensive Security Certified Professional, Offensive Security Certified Expert, CREST CCT, CREST CSAM and CREST CSAS, for which support will be provided.
Requirements
Demonstrably strong skills and experience in several of the following domains:
  • Web application penetration testing
  • Infrastructure penetration testing
  • Mobile penetration testing (iOS, Android, Windows Phone)
  • Server and workstation secure build configuration review
  • Firewall ruleset and configuration review
  • Social Engineering, Open Source Intelligence Gathering, Phishing
  • Demonstrably strong social and presentation skills.
  • Demonstrably strong written and speaking English skills.
  • Demonstrably strong commercial awareness.
  • OSCP/OSCE, CREST CCT or equivalent level of IT security related certification.
  • An ability to lead, teach, present and inspire the wider team.
  • At least 24 months of relevant IT security industry experience in the past 3 years.
Responsibilities
  • Deliver penetration testing and other related security audit activities.
  • To perform kick off calls, wash up calls, email responses and debrief for each assigned engagement.
  • To help develop client relationships and to provide professional consultative-style engagements.
  • Write full and thorough reports for each engagement that show quick and constant improvement, based on comments from QA and peers.
  • Through self-study and mentorship the individual must demonstrate an ability to rapidly verse themselves in a wide variety of IT security skills.
  • Willingness to mentor Junior Security Consultants and Security Consultants where appropriate and/or requested.
  • To lead variety of sized projects as deemed appropriate.
  • Where appropriate and/or requested, to provide labs for the company CTF, deliver effective and useful clinic (training/research) days and to take part in any other activity which promotes the teams cohesion and ability to progress.
  • When requested, to provide technical analysis of current information security events, especially for the purpose of media coverage.
  • When requested, to prepare and run the weekly penetration testing team weekly meetings in an effective manner and using the provided standard template and report any concerns raised to management.
  • To assist in Security Testing related activities, providing technical assessment of scope, principal security concerns and testing methodology to Account Manager, including face-to-face meetings when requested.
  • When requested, to formally review reports submitted to Quality Assurance to the standard expected.
  • To provide insight into methods of team improvement, process improvement and improvement of any other aspect of day-to-day team delivery.
  • To demonstrate strong inter-personal skills and to be responsible for one or more strategic areas as requested.
  • To assist Management in performing other tasks as requested and required for effective business function.
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Cybersecurity Penetration Tester National Incident Response Team (Nyc East Rutherford Dallas Or Richmond) Federal Reserve

Federal Reserve Bank

Posted 1 week ago

VIEW JOBS 11/8/2018 12:00:00 AM 2019-02-06T00:00 Area Overview: The National Incident Response Team (NIRT) is an in-house Information Security team that serves the entire Federal Reserve System across the United States and its territories. NIRT is responsible for delivering effective and efficient nationwide cyber intrusion detection, incident response, threat assessment, cyber intelligence, software security, and vulnerability assessment services to the FRS and its clients. NIRT's primary mission is to play a leading role in the Federal Reserve System's efforts to protect its information systems against cyber security attacks, monetary theft, and unauthorized use by both internal and external individuals who wish to do harm to the United States and destabilize its global economy. Principle Duties and Responsibilities: As a Penetration Tester on NIRT's Security Assessment team, you will participate in a variety of engagements and projects that will target and evaluate the cyber security posture of people, processes, and technology within the Federal Reserve System. On these nationwide projects, you will be using a variety of tools and techniques that include penetration testing, red teaming and, social engineering as well as having the opportunity to combine your technical expertise with your imagination to discover innovative methods for ensuring that the Federal Reserve System remains one step ahead of its adversaries around the world. Required Technical Skills: * Must be a U.S. citizen and able to obtain and maintain a National Security Clearance. * 7-10 years of overall experience preferred, approximately 2–5 years of experience in cyber security assessments. * Penetration testing experience with web applications, operating systems, network protocols, wireless, mobile, databases, middleware, etc. * Experience testing web applications for common web application security vulnerabilities including input validation vulnerabilities, broken access controls, session management vulnerabilities, cross-site scripting issues, SQL injection and web server configuration issues. * Hands-on experience with commercial and open-source cyber security tools such as proxies, port scanners, vulnerability scanners, exploit frameworks (ex: Burp, Nessus, Nmap, Metasploit, Cobalt Strike, Empire, etc.). * Experience in programming languages such as Python, JavaScript, C#, PowerShell, Bash Scripting, etc. * Must be able to demonstrate a level of familiarity with real-world vulnerabilities, exploits, and payloads. * Demonstrated ability to work on multiple projects simultaneously and to work in a highly dynamic, rapidly changing environment. * Team player with excellent consultative skills, and the proven ability to work effectively with client, internal management and staff, vendors and consultants. * Develop comprehensive and accurate reports and presentations for both technical and executive audiences Additional Skills: * Specifically seeking a hybrid candidate who is comfortable in both Penetration Testing and Red Teaming. * Developing, extending, or modifying exploits, shellcode or exploit tools * Must be able to demonstrate a level of familiarity with real-world vulnerabilities, exploits, and payloads * Assist with scoping prospective engagements, leading engagements from kickoff through remediation, and mentoring less experienced staff Education/Certifications: * Bachelor degree in Information Technology/Computer Science, and/or equivalent work experience The Federal Reserve Bank of New York is committed to a diverse workforce and to providing equal employment opportunity to all persons without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, genetic information, disability, or military service. Federal Reserve Bank New York City NY

Senior Security Consultant - Penetration Tester

Expired Job

MAP SSG