Senior Associate Penetration Testing
About the role
Join Urbane, a leading information security firm, to tackle complex security challenges for some of the world's largest and most interesting organizations. Our team combines offensive and defensive security expertise to protect diverse environments, from cloud platforms to healthcare providers.
Responsibilities
- Assess real-life risks in diverse technical environments
- Identify security weaknesses and actively exploit them
- Determine additional impact through post-exploitation
- Perform black box network testing, insider threat assessments, credentialed application exploitation, and testing human and physical controls
- Provide guidance on defensive designs and assist compliance associates on technical choices
- Switch sides occasionally to maintain a full perspective of the security landscape
- Make a difference by improving environments' security, advising on effective solutions, and addressing real security problems
Requirements
- 3+ years of experience in penetration testing
- Experience in external and internal network penetration testing, wireless testing, web application testing, mobile application testing, social engineering, and non-destructive physical security testing
- Strong technical knowledge and understanding of mixed-technology environments, including diverse operating systems, network hardware, web application languages, administration technologies, authentication mechanisms, and cloud platforms
- Extensive use of open-source penetration testing tools and frameworks, such as Metasploit, Burp, Nmap, etc.
- Development or modification of tools in scripting languages like Ruby, Python, Perl, or Java to assist in testing
- Core fundamentals of computers, including protocol stacks
- Good writing skills and self-QA deliverables
Qualifications
- Active in industry groups and conferences
- College or equivalent educational experience
- Experience in modifying or creating tools or payloads to exploit vulnerabilities not covered in other frameworks
- Independent research, testing, or tool development on security issues
- Located in Chicago-land area or open to relocation
- Preference for the terms "information security" or "computer security"
Skills
Our ideal candidate possesses creative, out-of-the-box thinking, curiosity, and a passion for technology. They are highly organized, detail-oriented, and able to balance personal goals with project priorities. They also have a strong ethical compass and a desire to continuously improve.
Benefits
- Competitive salary
- Standard benefits package including medical/dental/vision insurance, paid vacation time, 401(k) plan, and reimbursable internet/phone/gym plans
- Training and professional development stipends (including conferences)
- Annual team meetings and occasional team events, including BlackHat / DEF CON week
- Exotic travel locations (like Omaha!)
Pay
Details TBD
Schedule
Details TBD
Who We Are
Founded in 2009, Urbane is an information security firm dedicated to elevating security and compliance through tailored engagements. We serve a wide range of customers, from Fortune to startups, offering challenging and meaningful work opportunities.
What's In It For You?
- Competitive salary
- Standard benefits package
- Professional development stipends
- Annual team meetings and events
- Exotic travel locations
- Captivating challenges and meaningful work
- Opportunities for intellectual and professional growth
To Apply
To join the Urbane team, please email JoinUs@UrbaneSecurity.com with:
- Email Subject: The role you're applying for
- Current Resume: Your experience, skills, and knowledge
- Who _YOU_ are: Introduce yourself and outline what makes you unique, skilled, or interesting
- What does it mean to you to be "Urbane": Outline how you'll make your work "Urbane" in quality