Listing Description
The primary role of the Senior Penetration Tester is to lead the technical execution of pen testing activities, including scoping, test plan creation, and technical execution. Especially, the Senior Penetration Tester is responsible for the preparation, execution, and reporting of advanced tests that assess the resiliency, integrity, and security of the organization. This role will proactively identify security vulnerabilities in solutions including but not limited to: web and client/server applications, ASPs, OSPs, wired and wireless networks, IT infrastructure and data storage and will recommend mitigating actions to reduce identified risks to an acceptable level.Required Skills/Qualifications/Certifications:
Strong written and verbal communication skills, including the ability to articulate technical concepts, impacts, risks, mitigations, and remediation guidance
Advanced experience with common pen testing toolsets
Ability to perform penetration testing with minimal reliance on automated tools
Expert level understanding of networking protocols and web application architecture
Strong familiarity with Java and .NET based web applications
Expert level familiarity with both Windows and Unix operating systems
Preferred Skills/Qualifications/Certifications:
Able to properly install, configure, and run common open-source testing tools
Extensive knowledge of Windows and Linux operating systems
Strong familiarity with Microsoft Active Directory security concepts
Strong familiarity with Microsoft SQL Server and Oracle database concepts
Deep knowledge of cryptographic protocols
Experience developing custom payloads and exploit chains
Strong familiarity with application DevOps concepts, tools, and technologies
Advanced scripting experience (Python, Bash, Perl, PowerShell, Command Shell, etc.)
Advanced experience with debuggers and disassemblers
Advanced knowledge of intrusion detection evasion techniques
Years of Experience Required: 5+ years
Education Requirements: Bachelor's/Master's Degree Preferred
Relevant certifications (i.e., OSCP, CEH, OSWE, CISSP, GPEN, GWAPT, Security +, etc.)
Listing Details
- Salary: $90000 - $110000
- Citizenship: Us Citizen
- Incentives: Stock Options
- Education: No Requirements
- Travel: Travel 25
- Telework: Optional Telecommute