This site uses cookies. To find out more, see our Cookies Policy

Penetration Tester in Phoenix at Collabera

Date Posted: 11/30/2018

Job Snapshot

  • Employee Type:
    Contract to Hire
  • Location:
    Phoenix
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:
    11/30/2018

Job Description

Description: The Information Security Specialist will be responsible for supporting the Application Security organization, including performing pen tests, threat assessments, and leadership of the Application Security program. The ideal candidate should have experience in detecting security threats in the application space and can intelligently speak to the technical details of the threats. The ability to lead others and provide strategic direction of the program is a must. Basic Qualifications: • BS degree in Computer Science, similar technical field of study, or equivalent practical experience. • Ability to effectively collaborate and communicate with others in English. • 4+ years experience in application penetration testing and tooling, advanced red team, or application security engineering and architecture, preferably in a large and distributed operating environment. • Expert knowledge of OWASP Top 10 and ability to articulate web security risks • Knowledge of automated DAST, SAST, and RASP tooling is preferred, including but not limited to OWASP Zed Attack Proxy, BURP Suite, Nessus, Metasploit, Postman, WebInspect, Qualys, or WhiteHat. • Operational understanding of TCP/IP and computer networking. Knowledge of the functions of security technologies such as IPS/IDS, Firewalls, Security Information and Event Management tools, etc a plus. • Possession of industry standard certification such as OSCP, CEH, GWAPT, GPEN and/or other relevant penetration testing related certifications a plus. • Demonstrated time management skills strong work ethic, attention to detail, able to multitask and have strong communication, time management and problem solving skills. • Knowledge of SDLC, Agile, Waterfall, or Scrum • Information Security, Security Testing and/or Risk Analysis Experience • 3-6 or more years of experience in solving challenging technical problems in two or more of the following areas: o Single Page web application development and Modern web development o Unix/Linux environment management o Software security o Cloud based continuous delivery and environment management o Large, distributed system development o Processing and analyzing large data sets o OO programming, code refactoring and design patterns Preferred qualifications: • A passion for learning new programming languages, software libraries, data layers, and development paradigms. • Ability to articulate at least one accomplishment that you are really proud of; what did you do and what was the outcome. • Professional Experience with any of the following: o Javascript, Java, .NET o Amazon Web Services (AWS) o Functional programming o Multiple data stores (SQL stores, MongoDB, CouchDB, Neo4J, Hadoop, Cassandra, DynamoDB, ElasticSearch, Solr, etc)

Job Requirements

Penetration Tester, TCP/IP, OWASP, IPS/IDS, Firewalls, Security Information and Event Management tools, Information Security, Security Testing and/or Risk Analysis, web application, Unix/Linux, data stores