Ethical Hacker (Penetration Testing)

Location: Denver, TX
Date Posted: 11-25-2018
We are pleased to present the following job opportunity with our client! Take a look and if you meet the requirements please submit your resume and we'll be in touch if you're a good fit!

You will be knowledgeable with business risks associated to common security vulnerabilities and to be able to effectively communicate security vulnerabilities to application developers and/or senior managers who may have little to no experience with application security vulnerabilities.

The ability to work independently in a very large scale, enterprise setting is a great skill to possess. Previous experience as an application security professional with a large Financial Institution a plus.

 
Required Skills:
• BS/MS in Computer Science (or relevant work experience in a large scale IT environment)
• Experience conducting vulnerability assessments, code reviews and penetration tests against web/mobile application technologies, services, platforms and languages to find flaws and exploits (e.g. SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery, Clickjacking, Authentication/Authorization, Privilege Escalation, Business Logic Bypass, OWASP Top 10, SANS Top 25 etc)
• Knowledge of network and Web related protocols/technologies
• Ability to demonstrate manual web application testing experience
• Experience with web application vulnerability scanning tools (e.g. IBM AppScan, HP Webinspect, Accuntix, NTO Spider, Burpsuite Pro etc.)
• Experience with vulnerability assessment tools and penetration testing techniques (e.g. web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI etc.)
• Experience of penetration testing on mobile platforms such as iOS, Android, Windows and RIM.
• Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
• Expert-level experience and very details technical knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
• Demonstrated ability to learn and apply critical thinking to a variety of situations
• One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
• Strong scripting skills (e.g. Python, Perl, Shell script, JavaScript
• Experience as a developer
• Mobile programming abilities such as Xcode, Objective-C
• Knowledge of a Structured Query Language
 
 
Specific Skillsets Desired:
• Expert in performing Application Security, Penetration Tester (Web, Mobile, WebServices) with deep understanding of risks associated with application security vulnerabilities.
• SME Level knowledge in the use of Application Security Scan Tools (ie BURP, AppScan, WebInspect, SOAP UI or etc)
• Certifications (OSCP, OSCE a plus)
 
Additional Locations:Charlotte NC, Washington DC, Denver CO, Addison TX 
Very competitive salary and benefits!
Great company to work for!
Full relocation package is available!
Don't miss out! Apply now and we'll be in touch immediately with more specific details, salary information and to answer any questions!!

This position does NOT provide sponsorship so please do NOT apply if you require sponsorship.  Thank You

KP Recruiting Group 
"Bringing Talent to the Marketplace"

KP Recruiting Group is a well established and very respected recruiting firm.  We have built a strong reputation as a premier resource for providing highly qualified candidates for our clients.  We are very experienced in many industries and have a wide range of clients.  We will serve as your advocate during your career search!  Let us do the work for you!  There is never a fee for our services!



 
or
this job portal is powered by CATS