Senior Security Consultant (Mainframe Penetration Tester)
NetSPI · Minneapolis, MN · 1 wk ago
RemoteRemoteInformation TechnologyFull-time
Responsibilities
- Perform network, app, platform, CICS, IMS, Db2 and other z/OS-based penetration tests.
- Create and deliver penetration test reports to clients.
- Collaborate with clients to create remediation strategies that will help improve their security posture.
- Research and develop innovative techniques, tools, and methodologies for penetration testing services.
- Participate in the ongoing development/enhancement of NetSPI services and processes, in addition to thought leadership (via blogs, presentations, white papers, webinars, podcast, vlogs and tweets).
- Provide pre-sales support by assisting with scoping prospective engagements.
- Act as a resource for internal team members as it relates to in-depth technical questions or best practices.
- Responsible for QA activities in assigned service lines.
Requirements
- Bachelor’s degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience.
- 3-5 years of experience in penetration testing, including network, web or thick client application, and operating system testing.
- Experience with offensive toolkits used for network and application penetration testing.
- Strong communication skills, both verbal and written.
- Knowledge of z/OS fundamentals including, but not limited to: TSO, JCL, JES2, USS, Networking and at least one ESM (RACF, ACF2, Top Secret).
Qualifications
- Programming experience in one or more of the following languages: Assembler, C, C++, REXX, Python.
- Experience security or managing z/OS-based systems.
- Experience with pentesting (PTAS), PTES, OSCP or other offensive security certifications.