Saxon Global
Product security engineer - Penetration testing
Saxon Global, Boston, Massachusetts, us, 02298
Must have experience in DDS, Ethercat, QNX. Wireshark•Assist in the planning and execution of penetration tests.•Data, code, and vulnerability analysis•Documentation and report writing•Tool and script development
Technical Skills:•The ability to perform penetration testing activities on one or more of the following independently: Web Applications, Cloud Infrastructure, IT Infrastructure, Mobile and Embedded Operating Systems, and Applications•Familiar with Pen testing tools: (e.g., Nessus, Nexpose, Metasploit, nmap, BurpSuite, Kismet, Nipper, Wireshark and Kail)•A broad knowledge of attack vectors exploits and mitigations that work at scale or may be linked together for chained attacks.•Strong understanding of CI/CD pipelines and experience with integrating security testing into automated build processes.•An understanding of security monitoring assessments•A good understanding of Windows/Linux-based operating systems and networking•Familiarity with cloud computing models, technologies, and concepts•Skills with some of the following: Bash, PowerShell, Python, Go, Assembly, C/C++, C#, JavaScript, Java
Qualifications/Certifications:•Bachelors degree in Computer Science, Information Technology, or related field (or equivalent experience).•4+ years of relevant engineering or security assessment experience•Certifications from one or more of the following are desired: Offensive Security, Global Information Assurance Certification(GIAC), or other "hands on" industry certifications
Technical Skills:•The ability to perform penetration testing activities on one or more of the following independently: Web Applications, Cloud Infrastructure, IT Infrastructure, Mobile and Embedded Operating Systems, and Applications•Familiar with Pen testing tools: (e.g., Nessus, Nexpose, Metasploit, nmap, BurpSuite, Kismet, Nipper, Wireshark and Kail)•A broad knowledge of attack vectors exploits and mitigations that work at scale or may be linked together for chained attacks.•Strong understanding of CI/CD pipelines and experience with integrating security testing into automated build processes.•An understanding of security monitoring assessments•A good understanding of Windows/Linux-based operating systems and networking•Familiarity with cloud computing models, technologies, and concepts•Skills with some of the following: Bash, PowerShell, Python, Go, Assembly, C/C++, C#, JavaScript, Java
Qualifications/Certifications:•Bachelors degree in Computer Science, Information Technology, or related field (or equivalent experience).•4+ years of relevant engineering or security assessment experience•Certifications from one or more of the following are desired: Offensive Security, Global Information Assurance Certification(GIAC), or other "hands on" industry certifications