This is a hybrid position needs to be able to travel to sites.

Key Accountabilities (please indicate if these are direct or indirect accountabilities):

1. Scope penetration tests with project teams
2. Conduct penetration testing activities against IT systems and applications
3. Liaise with Security Architects and Project teams to articulate findings and drive remediation
4. Analyse or produce high quality penetration test reports and draft remediation plans
5. Build / maintain penetration testing environments
6. Maintain technical documentation; e.g. methodologies, technical guides, and reporting standards
7. Mentor junior tester, developing their penetration testing experience

Knowledge, Experience & Technical Know How

• Essential
  • 3 - 5 years experience in a Penetration Testing position
  • Strong understanding of:
    • Penetration testing process and deliverables
    • Web Application / API penetration testing methodology
    • Common application vulnerabilities such as those included within the OWASP Top 10 and ASVS checklist
  • Experience with using common web/API application penetration testing tools such as Burp Suite Professional
  • Demonstrable knowledge of additional tooling utilised for all stages of the web/API testing methodology
  • Strong stakeholder management and written/oral communication skills, with the ability to communicate at a technical and business user leve
  • High reporting standards and strong attention to detail, able to review and QA work of peers
• Desirable
  • Experience in application development
  • Actively involved in the security community; developing open source tools, contributing to security blogs, or participating in CTF competitions
  • Able to work in both waterfall and agile software delivery project
  • Experience working in a Critical National Infrastructure environment, or similarly regulated industry
  • Good understanding of the Energy industry and Industrial Control Systems
  • Computer Science, Mathematics, Engineering, or Security related degree (or higher)

Required Skills :
Basic Qualification :
Additional Skills :
Background Check :Yes
Drug Screen :Yes
Notes :
Selling points for candidate :
Project Verification Info :
Candidate must be your W2 Employee :Yes
Exclusive to Client :Yes
Face to face interview required :No
Candidate must be local :Yes
Candidate must be authorized to work without sponsorship ::No
Interview times set :Yes
Type of project :Testing
Master Job Title :Performance Tester/Eng
Branch Code :Boston

Indotronix is an Equal Opportunity Employer