Go Enterprise, contact us anytime: email, phone, or chat

  • Penetration Tester

    Hogan Lovells

    Hogan Lovells is seeking a Senior Penetration Tester to join our Information Security Team. The Penetration Tester will be responsible for performing pen tests and simulating attackers on existing and upcoming services spanning across applications, servers, and end-user assets. The Penetration Tester will leverage manual and automated tools to determine a risk score and recommend mitigations that can be used to reduce risk to the firm. The Pen Tester will also design automated continuous pen testing solutions to supplement manual efforts.

Description

• Perform hands-on application security penetration testing
• Work with developers, vendors, engineers, and others to design solutions that support incident response and monitoring functions.
• Design and improve security testing processes; create security testing plans and test cases.
• Develop templates to be used for a continuous pen testing solution.
• Bring in additional contract pen testers as needed.
• Assist in scoping, time lining projects, and developing reports for management on key trends and risk areas


Responsibilities

  • 3-5 years’ experience working in security, with at least two years conducting penetration testing or similar risk assessments.
  • Experience with defensive technology such as NG Firewalls, EDR solutions, and SIEMs.
  • Understanding of security vulnerabilities and attacks (hardware, firmware, software, network, and people), and the ability to understand new ones based on new technology being developed.
  • Familiarity with the MITRE ATT&CK threat model to quantify security risks.
  • Understanding of security principles, IT security controls and OWASP top 10 Mobile and Web application vulnerabilities.
  • Skilled in performing packet-level network traffic analysis using appropriate tools.
  • Ability to work independently, but also communicate with a geographically diverse team.
  • Industry certifications such as GREM, GCFA, GCFE, CEH, GREM, GCFA, GCFE, OSCP, CPT, CEPT, GPEN, etc are desirable.
  • Scripting or API development experience with Python desirable.
  • Good written and verbal communications skills.
  • Work in one of our many office locations; preferred locations: Louisville, KY or Washington, DC

Details

  • Travel No travel
  • Incentives Bonus
  • Clearance & Citizenship U.S. Citizenship
  • Remote Work No remote work
  • Education No requirements
  • Salary Range 130-150K

Join NinjaJobs!

Registered users get the benefit of full listing views, searches, posting options and more!

Company Ratings powered by

  • 3.5

    Overall Rating - Satisfied


  • Culture and Values 3.6
  • Work/Life Balance 3.3
  • Senior Management 3.1
  • Comp and Benefits 3.5
  • Career Opportunities 2.9