המקום בו המומחים והחברות הטובות ביותר נפגשים
PNC Security Testing Specialist Sr - Pen Tester United States, Texas, Farmers Branch 3746716
22.09.2024
A Security Specialist Sr (Penetration Tester) demonstrates general knowledge of concepts such as OWASP Top 10, vulnerability scanning, and penetration testing methodologies.• Conducts and assists with automated and manual security testing of applications, infrastructure, and public cloud platforms to identify and validate vulnerabilities.
• Retests previously discovered vulnerabilities to confirm successful remediation.
• Develops and maintains documentation such as procedures, assets, communication, etc.
• Performs quality assurance of penetration testing and vulnerability scan artifacts.
• Contribute to the enhancement of the penetration testing program.- 5+ yrs of penetration testing experience
- Experience conducting technical debriefs of security vulnerabilities to both technical and non-technical audiences
- Ability to review application scanning tool results and quickly identify false positives- Mobile testing experience
- Mainframe testing experience
- Threat Modelling experience
- Mobile development experience
- Web Application Development experience
- Penetration Testing as a Security ConsultantConsidered Certifications
o Offensive Security Certified Expert (OSCE)
o Offensive Security Certified Professional (OSCP)
o Offensive Security Wireless Professional (OSWP)
o Certified Information Systems Security Professional (CISSP)Familiarity with one or more of the following tools:
- Burp Proxy/Man-in-the-Middle (MiTM) Proxy/ZAP proxy/Charles proxy
- AppScan
- Nessus
- Qualys
Job Description
• Retests previously discovered vulnerabilities to confirm successful remediation.
• Develops and maintains documentation such as procedures, assets, communication, etc.
• Performs quality assurance of penetration testing and vulnerability scan artifacts.
• Contribute to the enhancement of the penetration testing program.- 5+ yrs of penetration testing experience
- Experience conducting technical debriefs of security vulnerabilities to both technical and non-technical audiences
- Ability to review application scanning tool results and quickly identify false positives- Mobile testing experience
- Mainframe testing experience
- Threat Modelling experience
- Mobile development experience
- Web Application Development experience
- Penetration Testing as a Security ConsultantConsidered Certifications
o Offensive Security Certified Expert (OSCE)
o Offensive Security Certified Professional (OSCP)
o Offensive Security Wireless Professional (OSWP)
o Certified Information Systems Security Professional (CISSP)Familiarity with one or more of the following tools:
- Burp Proxy/Man-in-the-Middle (MiTM) Proxy/ZAP proxy/Charles proxy
- AppScan
- Nessus
- Qualys
Job Description
- Provides subject matter expertise for security testing capabilities. Carries out manual and automated security testing of applications, infrastructure, and/or platforms to discover security vulnerabilities.
- Performs manual & automated security testing.
- Performs manual testing to validate vulnerabilities.
- Creates reports and review test results with stakeholders.
- Assists in the design and implementation of security solutions and continuously enhances information security approaches and methodologies at manager discretion.
- Provides subject matter expertise. Lead and mentor at manager discretion.
PNC Employees take pride in our reputation and to continue building upon that we expect our employees to be:
- Customer Focused - Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions.
- Managing Risk - Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework.
Successful candidates must demonstrate appropriate knowledge, skills, and abilities for a role. Listed below are skills, competencies, work experience, education, and requiredneeded to be successful in this position.
Analytical Thinking, Effective Communications, Information Security Management, Information Security Technologies, IT Environment, IT Standards, Procedures & Policies, Knowledge of Organization, Problem SolvingRoles at this level typically require a university / college degree. Higher level education such as a Masters degree, PhD, or certifications is desirable. Industry relevant experience is typically 8+ years. Specific certifications are often required. In lieu of a degree, a comparable combination of education, job specific certification(s), and experience (including military service) may be considered.No Required Certification(s)No Required License(s)PNC offers a comprehensive range of benefits to help meet your needs now and in the future. Depending on your eligibility, options for full-time employees include: medical/prescription drug coverage (with a Health Savings Account feature), dental and vision options; employee and spouse/child life insurance; short and long-term disability protection; 401(k) with PNC match, pension and stock purchase plans; dependent care reimbursement account; back-up child/elder care; adoption, surrogacy, and doula reimbursement; educational assistance, including select programs fully paid; a robust wellness program with financial incentives. In addition, PNC generally provides the following paid time off, depending on your eligibility*: maternity and/or parental leave; up to 11 paid holidays each year; 8 occasional absence days each year, unless otherwise required by law; between 15 to 25 vacation days each year, depending on career level; and years of service.*For more information, please click on the following links:
California ResidentsRefer to the
משרות נוספות שיכולות לעניין אותך
