Contact us about our enterprise services: email | phone | chat

  • Lead Penetration Tester (Information Security)

    FICO

    FICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 90+ countries make better decisions. Join our world-class team today and fulfill your career potential! Job Description Summary As a penetration tester, you would be expected to conduct formal tests on web-based applications, networks, and other types of computer systems of FICO on a regular basis. You will also be expected to work on physical security assessments of servers, computer systems, and networks. Along with these tests and assessments, you'll be conducting regular security audits from both a logical/theoretical standpoint and a technical/hands-on standpoint. To apply for this position please submit your resume to: AlexTeplitsky@fico.com

Description

Experience/Qualifications Required:
• Preferably 6-10 years of hands on Penetration Testing of web applications and infrastructure experience.
• Firm understanding of enterprise class application architectures that are highly scalable and reliable and the ability to secure them.
• Able to work in both waterfall and agile software delivery projects
• A good understanding of Cloud based architectures including Azure, AWS and OpenStack
• A good understanding of the OSI stack and the various protocols from layer 1 – 7 including SNMP, HTTP, VPN, 802.11
• Experience testing applications on UNIX, Linux and Windows.
• Understanding of technical systems, including web technologies (server and browser), relational databases and application servers.
• Good communication skill and a desire to function in a team based environment.
• Ability to effectively and efficiently manage multiple tasks.

Preferred Experience/Qualifications:
• Experience in common scripting languages such as Python, Ruby, LUA, Powershell or BASH
• Experience in at least one development language e.g. Java, C, C# or similar
• Experience in Performing web, mobile, and thick application penetration tests
• Experience in Performing external, internal, and wireless network penetration tests, should be able to test Network Segmentation
• Create and deliver penetration test reports to Internal clients or teams
• Collaborate with clients to create remediation strategies that will help improve FICO’s security posture
Education:
• BS degree in Computer Science or related fields or equivalent experience
• Certifications such as GWAPT, or GPEN, or CEH, or OSCP is mandatory
Rewards:
• High performance culture promoting recognition, rewards and professional development.
• Competitive base salary coupled with attractive role-specific incentive plan.
• Comprehensive benefits program.

• FICO’s proven science leverages the latest technology to drive consumer behavior insights and optimize business processes. We help many of the world’s leading banks, insurers, retailers, telecommunications providers and other firms reach a new level of success.
• Our success is founded on really talented people – just like you – who enjoy innovative and high-performance environments with the opportunity to grow. Join the FICO Family and help change the way business makes decisions!
• Learn more about how you can Fulfill your Potential at www.fico.com/Careers
• FICO is an Equal Employment Opportunity Employer that values the strength that diversity brings to the workplace.
To apply for this position please submit your resume to: AlexTeplitsky@fico.com


Responsibilities

  • What will you do as Lead Penetration Tester?
  • • Experience of using Open Source and COTS for penetration testing which could include Nmap, Nessus, Metasploit, Kali Linux, Burp Suite Pro and similar
  • • Perform security research activities on both known and unknown vulnerabilities
  • • Performs thorough penetration testing that includes the identification, reporting, and recommendations for security vulnerabilities while adhering to management driven scope and deadlines
  • • Stays up to date on the latest exploits and security trends
  • • Influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise
  • • Curates the vulnerabilities added to the database and develop tools to identify new and undisclosed vulnerabilities
  • • Creating product signatures and identifying root cause of vulnerabilities
  • • Security research about new vulnerabilities and their dependencies in FICO
  • • Delivers clear and coherent written reporting and remediation guidance
  • • Develop on-going technology risk reporting, monitoring key trends and defining metrics to regularly measure control effectiveness for own area.

Details

  • Travel Up to 25%
  • Incentives Bonus
  • Clearance & Citizenship U.S. Citizenship
  • Remote Work Remote occasional
  • Education Bachelors Degree
  • Salary Range 110-130K

Join NinjaJobs!

Registered users get the benefit of full listing views, searches, posting options and more!

Company Ratings powered by

  • 3.2

    Overall Rating - OK


  • Culture and Values 3.1
  • Work/Life Balance 3.3
  • Senior Management 2.8
  • Comp and Benefits 3.2
  • Career Opportunities 3.1

NinjaJobs by the Numbers - Q2-17