Jobs
>
Plano

    Penetration Tester - Plano, United States - Fortune 500 Companies

    Fortune 500 Companies
    Fortune 500 Companies Plano, United States

    1 week ago

    Default job background
    Restaurants / Food Service
    Description

    Offensive Security - Sr. Pentester / Red team operator

    Job Description

    Overview

    Within the Cyber Fusion Center, the Offensive Security Team continuously evaluates PepsiCo's cyber security posture through penetration tests and red team engagements to proactively identify gaps and drive mitigations to minimize PepsiCo's cyber risk exposure.

    Responsibilities

    • Conduct penetration tests across Web applications, APIs, Mobile applications, infrastructure, cloud environments, and devices.
    • Conduct red team engagements across complex environments (including operational technologies).
    • Drive all phases of penetration tests and red team engagements, including Scoping, planning, communications, timelines, and execution of key activities (reconnaissance, vulnerability identification, exploitation, and reporting).
    • Develop in-depth reports (issue, severity, impact, remediation recommendations) for penetration tests and red team engagements.
    • Develop tools and techniques to automate, scale, and accelerate adversary emulation capabilities and vulnerability discovery.
    • Develop exploits and POCs to evade defensive countermeasures and emulate threat actor TTPs.
    • Establish and mature team documentation, processes, procedures, and team KPIs.
    • Mentor penetration testers, red team members, and other functions where needed to drive unified and holistic outcomes.
    • Manage third-party pen test and red team engagements to ensure high-quality products and deliverables.
    • Support offensive security research, innovation, and testing across emerging capabilities (e.g. AI, LLM, ML, NLP, Smart Contracts, etc.).

    Accountabilities

    • Execute on projects, objectives, and deliverables in alignments with team vision, mission, and goals.
    • Routinely develop and update offensive security documentation, processes, and technologies to adapt to emerging threat landscape.
    • Develop automation to scale global offensive capabilities and operational resiliency.
    • Collaborate with partner teams, service owners, and senior leadership to influence, prioritize, and drive the resolution of discovered security findings.
    • Create and deliver trainings; and participate in security reviews, audits, on-site engagements, and support incidents after-hours when required.

    Qualifications

    Years of experience

    • 5+ years of experience in a technical security role (e.g. Penetration Testing, Red Team, Application Security, Infrastructure Security); or master's degree in computer science/engineering or related cyber field, and 2 years of relevant experience.

    Mandatory Technical Skills

    • Advanced knowledge of security tools (Burp Suite, Metasploit, Cobalt Strike, Empire, Nmap, bloodhound, etc.) and multiple operating systems (e.g. Windows, Linux).
    • Proficient in at least one scripting language (Python, bash, PowerShell) or one programming language (Java, C#, C++).
    • Experience in multiple security domains (e.g. Network security, Application Security, Infrastructure Security, Cloud Security, Security operations).
    • Experience in aligning threat and vulnerability management efforts to frameworks and control objectives - MITRE ATT&CK, NIST CSF, ISO27001, CIS, OWASP.
    • Familiarity with defensive and monitoring technologies such as Intrusion prevention/detection systems (IPS/IDS), Web application firewalls (WAF), security information and event management systems (SIEMs), and endpoint detection/response (EDR) tools, as well as user and entity behavior analytics (UEBA).
    • Experience in developing offensive security tooling and automation is a plus.

    Non-technical Skills

    • A proactive and positive team player who is impact-focused, driven, curious, analytical, and a self-starter.
    • Demonstrated ability to autonomously make high-judgment decisions and take calculated risks.
    • Ability to establish trust relationships and influence others to positively impact the security posture and the business.
    • Flexible and adaptive to support a dynamic and global environment with diverse stakeholders and ambiguity.
    • Solid customer orientation with excellent oral and written communication skills in English.
    • Must be able to operate extremely well under pressure.

    Differentiating behaviors

    • Ability to lead globally dispersed teams to achieve a unified outcome.
    • Experience driving large-scale risk reduction initiatives across Fortune 500 organizations.
    • Ability to weigh the relative costs/benefits/trade-offs of potential actions and identify the best resolution.
    • Active community engagement: Bug Bounty program engagements, participation in CTFs, or contributions to open source, etc.
    • Information Security certifications such as OSCP, OSCE, GPEN, GWAPT, or GXPN are a plus.
    • Ability to organize tasks, manage time, and prioritize actions to meet business needs.
  • JPMorgan Chase Bank, N.A.

    Penetration Tester

    6 days ago

    JPMorgan Chase Bank, N.A. Plano, United States

    As a Penetration Tester part of the Cybersecurity Operations and Assessments arm of JP Morgan Chase, your role is pivotal in protecting Chase Travel's business operations, client/employee data and the organization's intellectual property. As a in-house Penetration Testing profess ...

  • Fortune 500 companies

    Penetration Tester

    1 week ago

    Fortune 500 companies Plano, United States

    Offensive Security - Sr. Pentester / Red team operator · Job Description · Overview · Within the Cyber Fusion Center, the Offensive Security Team continuously evaluates PepsiCos cyber security posture through penetration tests and red team engagements to proactively identify g ...

  • Fortune 500 companies

    Penetration Tester

    2 days ago

    Fortune 500 companies Plano, United States

    Offensive Security - Sr. Pentester / Red team operator · All potential applicants are encouraged to scroll through and read the complete job description before applying. · Job Description · Overview · Within the Cyber Fusion Center, the Offensive Security Team continuously ev ...

  • JPMorgan Chase Bank, N.A.

    Penetration Tester

    2 days ago

    JPMorgan Chase Bank, N.A. Plano, United States

    As a Penetration Tester part of the Cybersecurity Operations and Assessments arm of JP Morgan Chase, your role is pivotal in protecting Chase Travel's business operations, client/employee data and the organization's intellectual property. As a in-house Penetration Testing profess ...

  • Insight Global

    Senior Penetration Tester

    1 day ago

    Insight Global Plano, United States

    Required Skills and Experience · -5+ years of experience in a technical security role · -Advanced knowledge of the Burp Suite · -Experience in one or more C2 framework such as Cobalt Strike · -Proficient in at least one scripting language (Python, bash, PowerShell) or one progra ...

  • Motion Recruitment Partners LLC

    Sr. Penetration Tester

    1 week ago

    Motion Recruitment Partners LLC Plano, United States

    Sr. Penetration Tester · Plano, Texas · **Hybrid** · Contract · $75/hr - $85/hr · Our Nationally recognized Client offering a top work environment is seeking a Sr level Penetration Tester for an immediate Contract Assignment (possible contract to hire) in the Plano, TX area. · ** ...

  • Insight Global

    Sr. Penetration Tester

    2 days ago

    Insight Global Plano, United States

    Insight Global is seeking a Sr. Penetration Tester to sit onsite with a fortune 50 client in Plano, TX. Candidates will be working within the Cyber Fusion Center on the Offensive Security Team that is responsible continuously evaluating the cyber security posture through penetrat ...

  • Insight Global

    Sr. Penetration Tester

    3 days ago

    Insight Global Plano, United States

    Job Description · Insight Global is seeking a Sr. Penetration Tester to sit onsite with a fortune 50 client in Plano, TX. Candidates will be working within the Cyber Fusion Center on the Offensive Security Team that is responsible continuously evaluating the cyber security postur ...

  • Diverse Lynx

    Penetration Tester

    1 week ago

    Diverse Lynx Dallas, United States

    Penetration Tester · Dallas, TX (Onsite) · Key Responsibilities:Planning and scoping security testing activities · Analyzing and evaluating vulnerability data from various tools · Conducting manual penetration testing to identify and exploit vulnerabilities · Researching new sec ...

  • Diverse Lynx

    Penetration Tester

    6 days ago

    Diverse Lynx Dallas, United States

    Job Title: Penetration Tester · Location: Dallas, TX, United States · Minimum Experience: 6-8 years · Mandatory Certification: OSCP · Preferred Certifications: CISSP, CPT/CEPT/ CMWAPT · Responsibilities: · • ssist in planning the scope of security testing activities. · • nalyze ...

  • Syntricate Technologies

    Penetration tester

    1 week ago

    Syntricate Technologies Dallas, United States

    Job Title: Penetration tester · Location: Dallas, TX · Duration: Contract · Job Description: Assisting in technical scoping of security testing activities curation and assessment of vulnerability data (across multiple platforms/tools) from a manual penetration perspective, to foc ...

  • ZAR IT Solutions

    Penetration Tester

    1 week ago

    ZAR IT Solutions Dallas, United States

    Application Security Associate (Penetration Tester) · 70hr. w2 · Location: Tampa or Dallas-hybrid (3 days onsite) · 6 mths CTH Perm · Business Unit Description · The Technology Risk Management department is responsible for setting strategic direction in the areas of IT Risk and I ...

  • ShiftCode Analytics

    Application Penetration Tester

    5 days ago

    ShiftCode Analytics Coppell, United States

    APPLICATION PENETRATION TESTER · 6 MONTHS CONTRACT 2 HIRE · COPPELL, TEXAS · HYBRID (3 DAYS/WEEK) · END-CLIENT DOMAIN- FINANCIAL SERVICES · VISA- USC/GC ONLY · Qualifications · • Minimum of 5 years of experience in application penetration testing · • Bachelor's degree is de ...

  • SIRA Consulting Inc

    Sr. Penetration tester

    2 days ago

    SIRA Consulting Inc Dallas, United States

    3097 Sr. Penetration testerDTCCLocation: Tampa or Dallashybrid 3 days a week onsite from day one.Can do boston or McLean but no increased rate Work w existing set of pen testers and do pen testing on APIs and applications 5+ years experience Someone who has GWAPT or OSCP certific ...

  • Vanguard

    Third Party Security Assessor

    1 week ago

    Vanguard Plano, United States

    Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (e.g., assets and data), and stewards a strong risk culture. Our teams leverage enterprise-wide insights, deep expertise, and trusted advice so that across Vanguard leade ...

  • PepsiCo

    Offensive Security

    4 days ago

    PepsiCo Plano, United States Full time

    Overview · Within the Cyber Fusion Center, the Offensive Security Team continuously evaluates PepsiCo's cyber security posture through penetration tests and red team engagements to proactively identify gaps and drive mitigations to minimize PepsiCo's cyber risk exposure. · Respon ...

  • Diverse Lynx

    Sr. Application Security Pen Tester

    5 days ago

    Diverse Lynx Dallas, United States

    Sr. Application Security Pen Tester · Dallas, TX - Day-1 on-site, Need local profiles. · 12 Months Contract · Need certified in Pen testing · We need someone with OSCP or may be CISSP but someone with CEH certification only is not needed. Do not submit any who only have CEH. · Ne ...

  • Exeter Finance LLC

    Security Engineer III

    1 week ago

    Exeter Finance LLC Irving, United States

    At Exeter Finance, we are committed to helping customers find the right financing for their next vehicle purchase. By building strong relationships with our customers and network of dealer partners we are able to give options that make sense, getting customers behind the wheel of ...

  • Exeter Finance

    Security Engineer III

    1 day ago

    Exeter Finance Irving, United States

    At Exeter Finance, we are committed to helping customers find the right financing for their next vehicle purchase. By building strong relationships with our customers and network of dealer partners we are able to give options that make sense, getting customers behind the wheel of ...

  • Denton County Defunct

    Security Analyst

    1 week ago

    Denton County Defunct Denton, United States

    The Security Analyst is responsible for ensuring the security, confidentiality, integrity, and availability of the county's IT infrastructure and sensitive data. The position is responsible for analyzing information, monitoring, and detecting security events and incidents to stop ...