Expoint - all jobs in one place

Finding the best job has never been easier

Limitless High-tech career opportunities - Expoint

Dell Senior Penetration Tester 
Romania, Bucharest 
68655231

05.12.2024

Security and Risk Consulting Group

Secureworks (NASDAQ: SCWX) is a global cybersecurity leader that secures human progress with Secureworks® Taegis™, a SaaS-based, open XDR platform built on 20+ years of real-world threat intelligence and research, improving customers’ ability to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.

Role Responsibilities

The Application Penetration Testing Senior Advisor Consultant supports the Secureworks Adversary Group by applying information security threat intelligence to identify and exploit vulnerabilities within our client’s environments. The focus areas for this role are web and mobile application penetration testing, API testing, and code review.

  • Conduct application security assessments (web, mobile, API, etc.) using off-the-shelf or internally developed exploitation tools to execute manual testing for advanced attacks

  • Produce and deliver vulnerability and exploit information to clients in the form of a professional security assessment report

  • Conduct client conference calls to include, but not limited to project kick-off calls, notification of high/critical findings during the testing process, and close out calls to review test findings, evidence, process steps to reproduce, and remediation recommendations

  • Perform proactive research to identify and understand new threats, vulnerabilities, and exploits

  • Excel as both a self-directed individual contributor and as a member of a larger team

  • Perform other essential duties as assigned

Minimum Requirements

  • Minimum of 5 years of experience with penetration testing (including application testing)

  • Minimum of 3 years of experience with at least one of the following: Nmap, Metasploit, Kali Linux, Burp Suite

Preferred Skills

  • Mobile testing experience

  • Experience conducting code reviews with at least one of the following languages: Java, C#, ASP.NET, Objective C, Swift, Python

  • Knowledge of NetSparker and AppScan operating systems administration and internals (Microsoft Windows / Linux)

  • Understanding of TCP/IP networking at a technical level

  • Bachelor of Science degree in Computer Science, Computer Engineering, Electrical Engineering, or a related technical field; or equivalent professional experience

  • Experience with various application attack vectors, security test processes and strong knowledge of common vulnerabilities (i.e. OWASP Top 10)

  • Working knowledge of SQL and high level languages

  • Good technical communication skills, both written and verbal; good analytical and problem solving skills