The point where experts and best companies meet
Share
About the Chief Information Security Office (CISO):
This team specializes in conducting deep-dive vulnerability assessments on a variety of Citi applications (Web, Mobile, Thick Client, and APIs) by manually identifying, researching, validating, and exploiting various known and unknown application security vulnerabilities. Core responsibilities include:
Responsibilities:
Act as a subject matter expert in offensive information security performing white-box application reviews, programming, networking, operating systems, and databases.
Research and identify potential security issues within Citi Applications
Demonstrate the impact of any identified vulnerability through the development of proof-of-concept code.
Drive remediation by outlining a defense-in-depth approach to business stakeholders and providing strategic solutions to developers on effective security controls and counter measures.
Have strong technical writing and presentation skills to report and articulate the vulnerability assessment results to any audience.
Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement and automation.
Qualifications:
Master’s Degree in Computer Science, Cyber Security or related field with a minimum of 3 years of experience in a penetration testing or application development roleOR
Bachelor’s Degree in Computer Science, Cyber Security or related field with a minimum of 5 years of experience in a penetration testing or application development role
Hands on knowledge and experience in a subset of the following tools: BurpSuite Proxy, AppScan, WebInspect, CheckMarx, BlackDuck, Nessus, NMAP
Must have or be willing to obtain Industry-accredited security certifications such as: GIAC GWAPT, GPEN, OSCP, OSWE, CISSP, GSSP-Java, and/or GSSP-.NET
Anticipated Posting Close Date:
View the " " poster. View the .
View the .
View the
These jobs might be a good fit