- Perform penetration testing against products and systems, including web applications, web services, and mobile devices.
- Assist with coordination of vendor pen testing services with internal development teams.
- Collaborate with stakeholders to develop remediation strategies.
- Demonstrating practical/working exploitation of security flaws.
- Develop and enhance process to automate the delivery of application security metrics.
- Review SAST/DAST output for false positives. Assist development with remediation.
- Serve as an application security subject matter expert.
- Participate in threat modeling exercises.
- Effectively communicate vulnerability details, risks, and potential impacts to, application owners, developers, stakeholders, and partners.
- Act as a mentor for junior team members/interns.
- Design, implement, and support security-focused tools and services.
- Develop tools that improve security testing, reporting, and monitoring.
- 5+ years of experience in manual penetration testing of web and mobile applications.
- Identify, research, and evaluate current vulnerabilities, provide remediation and configuration guidance. Collaborate with stakeholders to develop remediation strategies.
- Ability to interact with company personnel at all levels and across all business units to comprehend business imperatives. A strong customer/client focus, with the ability to manage expectations appropriately, to provide a superior customer/client experience and build long-term relationships.
- Competent to work independently at an advanced technical level.
- Produce well-written, detailed reports that describe vulnerabilities/risks and that provide specific remediation guidance.
- Understanding of cloud technologies and environments (AWS, Azure, Google).
- Ability to demonstrate a clear understanding, at an enterprise level, of application, network, infrastructure, and data security architecture.
- Excellent analytical skills, able to manage multiple projects under strict timelines, work well in a demanding dynamic environment, and meet overall objectives.
- Ability to work under pressure and manage competing priorities.
- Knowledge of web application frameworks, deployment technologies and security software.
- Scripting capabilities for creating custom scripts to identify/exploit vulnerabilities.
- Strong writing skills to produce detailed reports for consumption by stakeholders at all levels from operations to executive.
- Proven work experience in manual secure code review.
- Experience working with GitLab Ultimate CI/CD technology, shift-left tools, and application security workflows.
- GPEN, OSCP, CISSP, GWAPT, CEH, or similar certifications.
- Desired scripting experience: One or more of Python, JavaScript, PowerShell, shell script, Ruby, PHP, LUA etc.
- Bachelor's degree in Information Technology or Computer Science, or equivalent experience.
- Inherent passion for information security and service excellence.
- The ability to adapt to new situations and the desire to learn and stay current with AppSec trends, threats, and risks.
-
Penetration Tester
3 weeks ago
Comrise Charlotte, United StatesHello, · I'm Mitesh Shah from Comrise, and I have an exciting opportunity available with one of our esteemed clients. If you're open to new opportunities and seeking a positive change, I'd love to hear from you. Please share your resume along with your rate expectations, and let' ...
-
Senior Web Application Penetration Tester
3 weeks ago
Kaizen Lab Inc. Charlotte, United StatesJob Title: Senior Web Application Penetration Tester · Location: · Charlotte, NC · Job Description: · We are seeking a highly skilled and experienced Senior Web Application Penetration Tester to join our dynamic team in Charlotte, NC office. As a Senior Penetration Tester, you w ...
-
Kaizen Lab Inc. Charlotte, United StatesJob Title: Senior Web Application Penetration TesterLocation: Charlotte, NCJob Description:We are seeking a highly skilled and experienced Senior Web Application Penetration Tester to join our dynamic team in Charlotte, NC office. As a Senior Penetration Tester, you will be respo ...
-
Web Application Penetration Tester
3 weeks ago
Comrise Charlotte, United StatesPosition: Senior Web Application Penetration Tester · Location: Charlotte, NC · Duration 6 Months · ONLY US CITIZENS · We are seeking a highly skilled and experienced Senior Web Application Penetration Tester to join our dynamic team in Charlotte, NC office. As a Senior Penetrati ...
-
Senior Penetration Tester
2 weeks ago
TEKsystems Fort Mill, United States:This individual will be coming into the environment and building out their pentesting program, including all of the process and scheduling with multiple parties. They will have to be able to act on their own as they are going to be the SME for Red Team Operations at our client. ...
-
Pentester and Vulnerability Mgt Engineer
3 weeks ago
Belk, Inc. & Belk eCommerce LLC Charlotte, United StatesSecurity Engineer - Penetration Testing & Vulnerability Management · We are looking for a penetration tester/vulnerability engineer to join our team to help protect the organization from cyber threats. As a penetration tester, you will be responsible for conducting ethical hacki ...
-
Senior Information Assurance Specialist
4 days ago
Hearst Charlotte, United StatesJob Description · Hearst Technology, Inc, Information Security Office seeks a Senior Information Assurance Specialist for their Security Operations Team. This role is responsible for strengthening Hearst's cybersecurity posture through analysis, research, and security control va ...
-
Sr. Manual Tester
3 weeks ago
Manpower Group Inc. Charlotte, United StatesTitle: Senior Manual Tester · Location: Fully Remote (USA ONLY) · Industry: Banking (experience required) · Pay: $35/hour · Type: Long term contract. W2 candidates ONLY. · Role: SIT / Manual Tester – CAB Project · Company: Experis, IT Solutions (Software Automation Practice) · Ex ...
-
Senior Application Security Engineer
1 week ago
Billy Graham Evangelistic Association Career Site Charlotte, United StatesIs God calling you to ministry? · For over 70 years, The Billy Graham Evangelistic Association (BGEA) has proclaimed the Gospel through its various ministries. Whether you work at our headquarters in Charlotte, North Carolina, the Billy Graham Library in · Charlotte, North Carol ...
-
Health Care Service Corporation Dallas, United StatesSecurity Operation Center Consultant-3rd shift · At HCSC, we consider our employees the cornerstone of our business and the foundation to our success. We enable employees to craft their career with curated development plans that set their learning path to a rewarding and fulfill ...
-
Health Care Service Corporation Dallas, United StatesSecurity Operation Center Consultant-3rd shift · At HCSC, we consider our employees the cornerstone of our business and the foundation to our success. We enable employees to craft their career with curated development plans that set their learning path to a rewarding and fulfill ...
manual penetration tester - Charlotte, United States - V2soft
Description
V2Soft ) is a global company, headquartered out of Bloomfield Hills, Michigan, with locations in Mexico, Italy, India, China and Germany. At V2Soft, our mission is to provide high performance technology solutions to solve real business problems. We become our customer's true partner, enabling both parties to enjoy success. We are committed to promoting diversity in the workplace, and believe it has a positive effect on our company and the customers we serve.Description:
The Work Itself
Requirements:
- to view all of our open opportunities and to learn more about our benefits.