Overview:
TekWissen Group is a workforce management provider throughout the USA and many other countries in the world. Our client is an American multinational information technology services and consulting company and is a leading provider of information technology, consulting, and business process outsourcing services, dedicated helping the world's leading companies build stronger businesses.
Job Title: Penetration Testing Engineering
Work Location: Remote
Job Type: Contract
Work Type: Remote
Duration: 6 Months
Job Description/ Responsibilities:
Experience must include:
Security testing of custom solutions, integrations with ERP solutions and other commercial of the shelf solutions, application middleware (API, application servers, etc.), etc. that are on-premise and/or in the cloud in web, fat client or mobile form.
Practical working knowledge and use of
Penetration testing tools and frameworks such as BurpSuite, Metasploit, Nmap, AppScan, etc.
Cloud and container technologies like Azure Kubernetes, Azure Container Registry, etc.
Java, C++, C#, Python, HTML, Java script, PHP.
Windows and UNIX operating systems and operation/configuration of common web servers as Apache, etc.
OWASP, WASC, SANS, CVE, and CVSS (Threat & Vulnerability classification).
Practical working knowledge with identifying and mitigating security weaknesses, and incorporating security into enterprise software development lifecycle, both agile and traditional waterfall.
Demonstrated knowledge of running a broad range of web application testing tools, identifying vulnerabilities as per SANS 25 or OWASP Top 10 specifications and helping develop platform specific remediation plan.
Proven level of understanding of web application technologies (Java, .NET) and database management systems (Oracle, MS SQL) and related security concepts.
In-depth and hands-on working knowledge of common website vulnerabilities such as SQL injection, cross-site scripting, remote/local file inclusion, etc.; in-depth knowledge of common website exploit techniques such as character encoding, privilege escalation, directory traversal, etc.
Knowledge of security solutions, latest threats, and countermeasures.
Required Soft Skills:
Analytical skills that enable synthesis of inputs from many sources and allow for strategic thinking and tactical implementation.
Spoken and written communications that are compelling, convincing, and reassuring, and skills to articulate complex technical ideas to non-technical stakeholders.
Ability to think laterally and to have input to / propose detailed, complex solutions to technical issues.
Interpersonal skills that create openness and trust among colleagues.
Ability to work well under pressure and to meet tight deadlines. Demonstrates a high level of motivation, confidence, integrity, and responsibility.
Ability to be organized, responsive and to be able to effectively multi-task with a focus on driving results.
Demonstrate excellent interpersonal and relationship management skills. This includes the ability to work independently, effectively in a team/task force as a team member or leader, and with senior staff and managers.
Ability to work well under pressure and to meet tight deadlines, whilst demonstrating a high level of motivation, confidence, integrity, and responsibility.
Excellent relationship management skills. Facilitation and conflict management skills that enable effective working relationships.
Education:
Bachelor's degree in information security, computer science, engineering, mathematics, business, or related field of study plus a minimum of 10 years of relevant experience in regulated industries; OR
Advanced degree in Information Security, computer science, engineering, mathematics, business, or related field of study plus a minimum of 5 years of relevant experience in regulated industries.
Certifications: (Minimum plus at least 1 preferred):
CEH or CompTIA PenTest+ or CSSLP (minimum required)
GIAC application security and/or pen testing related certifications (preferred)
Offensive security related certifications (preferred)
TekWissen Group is an equal opportunity employer supporting workforce diversity.
...The purpose of the Purchasing Administrator position is to assist with supplier sourcing, vendor negotiations, contract management, contract negotiation, and procurement as well as overseeing the purchasing and receiving staff. MINIMUM REQUIREMENTS: High School...
...that will help you reach your earnings goals faster and more efficiently ~ Company trips, quarterly launches, annual trip to Cancun/Bahamas Our mission is to provide A Different Experience to both our customers and our employees. Our energetic culture mixed with a...
...information, visit www.vectra.ai.Vectra is looking for a Federal Civilian Regional Sales Manager for the DC area. As a Federal Sales... ...level within the designated territory, with CISO/CIO/CTO/GS/Contractor level contacts.~Key focused accounts are Dept of Justice (...
...We are seeking a highly skilled and experienced Senior Accountant to join our clients team in Northvale, NJ. The ideal candidate will have a strong background in accounting principles and practices, excellent analytical skills, and the ability to work independently and...
...hour depending on experience with Open Table Guest Center ~ Premium PPO health and dental insurance through Independence Blue Crossfor full time employees ~ Employee Dining Benefit Program at all 10 Fearless Restaurant locations ~401k through Vanguard...