Jobs · Information Technology

Senior Security Consultant (Web Application Penetration Tester)

NetSPI · Minneapolis, MN · 6 days ago
RemoteRemoteInformation TechnologyFull-time

Responsibilities

  • Conduct engagements on web applications and underlying APIs independently and provide technical oversight
  • Review reports for accuracy in technical oversight, perform weekly QA oversight, and provide mentoring support to others
  • Create, deliver, and collaborate on penetration testing reports in diverse client environments, maintaining client-specific processes, reporting standards, and access protocols to help improve their security posture
  • Research and develop innovative techniques, tools, and methodologies for penetration testing services, alongside commitment to improvement and execution on NetSPI specific products and processes
  • Participate in development, implementation, and oversight of testing, delivery, and management strategies for key client accounts
  • Perform administrative tasks related to day-to-day consulting activities to ensure smooth business and engagement operations

Requirements

  • Minimum Qualifications: Bachelor’s degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience
  • Minimum of 3-5 years of work experience in Penetration Testing
  • Familiarity with offensive tools, based on applicable skillset (e.g., Kali Linux, Burp Suite, Metasploit, Nessus)
  • Familiarity with offensive and defensive IT concepts and protocols
  • Extensive understanding of the OWASP Top 10, MITRE ATT&CK framework, and various security frameworks
  • Working knowledge of Windows, Linux and MacOS operating systems internals
  • Experience mentoring or coaching to growing team members, while sharing knowledge externally through blogs, hosting webinars, or presenting at conferences
  • Proficient communication skills, both written and verbal
  • Willingness to travel up to 5-10%

Qualifications

  • Bachelor’s degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience
  • Minimum of 3-5 years of work experience in Penetration Testing
  • Familiarity with offensive tools, based on applicable skillset (e.g., Kali Linux, Burp Suite, Metasploit, Nessus)
  • Familiarity with offensive and defensive IT concepts and protocols
  • Extensive understanding of the OWASP Top 10, MITRE ATT&CK framework, and various security frameworks
  • Working knowledge of Windows, Linux and MacOS operating systems internals
  • Experience mentoring or coaching to growing team members, while sharing knowledge externally through blogs, hosting webinars, or presenting at conferences
  • Proficient communication skills, both written and verbal
  • Willingness to travel up to 5-10%

Skills

  • Ability to provide technical and QA oversight on web applications and underlying APIs
  • Experience in one or more of the following programming or scripting languages (e.g., Ruby, Python, Perl, C, C++, Java, and C#)
  • Offensive cybersecurity certifications (e.g., GXPN, GPEN, OSCP, GWAPT)

Pay

  • Competitive salary commensurate with experience

Schedule

  • 8-hour workday, with occasional evenings or weekends necessary to meet project deadlines or critical needs

Similar jobs