Saxon Global
Application Security Testing Engineer/ Penetration Tester
Saxon Global, Rancho Cucamonga, California, United States, 91739
Hi
Hope you are doing good.
We are looking for Application Security Testing Engineer. This is a full time position. Please check the job description and reply to me if you are available for this position.
Title: Application Security Testing Engineer
Location: 10801 6th St STE 120, Rancho Cucamonga, CA 91730 (5 Days onsite)
Duration: Full Time/ Contract
Who are we looking for?
Looking for application and security analyst with minimum of total 3+ years of experience in conducting application and security tests against variety of technologies including web application, cloud, mobile and infrastructure as part of a team. Should be able to serve as a trusted advisor in helping customers with relevant decisions based on the findings of the reports and dashboards.
Technical Skills:
Conduct application and security assessment and penetration tests against variety of technologies including web application, mobile, cloud, as part of a team3+ years of working experience of Static and Dynamic Application Security Testing of web applications, web services, APIs and microservices including on cloudWorking experience and good understanding of application development, SDLC process and DevSecOpsGood knowledge of Static & Dynamic Application Security Testing toolsGood information security threat & risk-based prioritization abilitiesShould be very strong on running security tools on -premises applications, working with development team to implement devsecops in CI/CD pipeline, etcAnalyze vulnerability reports, segregate & prioritize the vulnerabilities, and do impact analysis, risk assessment, and identify false positivesGood foundation of common software vulnerabilities and their remediation/ mitigation techniquesAssist with determining and defining appropriate testing scopeWork collaboratively with a variety of internal stakeholders to deliver high quality penetrations testsProvide reports which highlight and clearly articulate vulnerabilities and weakness to clients in terms they understandWork within virtual teams of security and technical specialists to ensure quality delivery of leading security assurance services to our internal clientsMaintain a relevant skill with which to conduct penetration testing in the following domains:InfrastructureApplicationMobile (iOS, Android)Code reviewWork independently or as part of a team on penetration testsWork with global team and external entities to deliver Security Assurance servicesAnalyze and review security issues identifiedSupplement automated assessment techniques with manual security assessment approachesCommunicate security issues identified and mitigation/remediation optionsShould be able to articulate technical concepts in plain words to non-technical communityProvide regular assessment progress updates that include sufficient detail to convey work completed and upcoming activitiesResearch new and emerging threats, counter controls, and technologies on various platformsPentesting skills and experience in application/infrastructure/mobileUnderstanding of the security mechanisms associated with applications, Operating systems, Networks, Databases, Virtualization, and cloud technologiesShould be well versed with the following:
TLS transparency log analysisScheduled web application penetration testingApplication Manual & automated testingExternal penetration testingMulti-factor authentication (MFA) assessmentVulnerability management program enhancementsProgramming /scripting skillsExperience working with NIST, OWASP, MITRECWE, MITRE ATT&CK etc.CREST/OSCP/SANS or equivalent pentesting certificationTools experience in security assessment tools (e.g. NESSUS, NMAP, BurpSuite,ZAP,OWASP tools, Kali Linux tools)Experience in Automating Security tests using scripting languages (e.g., Python, Perl, Ruby)Good Written & Verbal Communication SkillsPresentation SkillsDefine and assist in the creation of operational and executive security reports and dashboards
Thanks and Regards,
Manish Kumar
P: 972-430-7053 Email:
manish.k@saxonglobal.com
Linkedin:
linkedin.com/in/manishtechie14
Suite # 660 1320 Greenway Drive, Irving, TX 75038
Website:
https://saxonglobal.com/
Hope you are doing good.
We are looking for Application Security Testing Engineer. This is a full time position. Please check the job description and reply to me if you are available for this position.
Title: Application Security Testing Engineer
Location: 10801 6th St STE 120, Rancho Cucamonga, CA 91730 (5 Days onsite)
Duration: Full Time/ Contract
Who are we looking for?
Looking for application and security analyst with minimum of total 3+ years of experience in conducting application and security tests against variety of technologies including web application, cloud, mobile and infrastructure as part of a team. Should be able to serve as a trusted advisor in helping customers with relevant decisions based on the findings of the reports and dashboards.
Technical Skills:
Conduct application and security assessment and penetration tests against variety of technologies including web application, mobile, cloud, as part of a team3+ years of working experience of Static and Dynamic Application Security Testing of web applications, web services, APIs and microservices including on cloudWorking experience and good understanding of application development, SDLC process and DevSecOpsGood knowledge of Static & Dynamic Application Security Testing toolsGood information security threat & risk-based prioritization abilitiesShould be very strong on running security tools on -premises applications, working with development team to implement devsecops in CI/CD pipeline, etcAnalyze vulnerability reports, segregate & prioritize the vulnerabilities, and do impact analysis, risk assessment, and identify false positivesGood foundation of common software vulnerabilities and their remediation/ mitigation techniquesAssist with determining and defining appropriate testing scopeWork collaboratively with a variety of internal stakeholders to deliver high quality penetrations testsProvide reports which highlight and clearly articulate vulnerabilities and weakness to clients in terms they understandWork within virtual teams of security and technical specialists to ensure quality delivery of leading security assurance services to our internal clientsMaintain a relevant skill with which to conduct penetration testing in the following domains:InfrastructureApplicationMobile (iOS, Android)Code reviewWork independently or as part of a team on penetration testsWork with global team and external entities to deliver Security Assurance servicesAnalyze and review security issues identifiedSupplement automated assessment techniques with manual security assessment approachesCommunicate security issues identified and mitigation/remediation optionsShould be able to articulate technical concepts in plain words to non-technical communityProvide regular assessment progress updates that include sufficient detail to convey work completed and upcoming activitiesResearch new and emerging threats, counter controls, and technologies on various platformsPentesting skills and experience in application/infrastructure/mobileUnderstanding of the security mechanisms associated with applications, Operating systems, Networks, Databases, Virtualization, and cloud technologiesShould be well versed with the following:
TLS transparency log analysisScheduled web application penetration testingApplication Manual & automated testingExternal penetration testingMulti-factor authentication (MFA) assessmentVulnerability management program enhancementsProgramming /scripting skillsExperience working with NIST, OWASP, MITRECWE, MITRE ATT&CK etc.CREST/OSCP/SANS or equivalent pentesting certificationTools experience in security assessment tools (e.g. NESSUS, NMAP, BurpSuite,ZAP,OWASP tools, Kali Linux tools)Experience in Automating Security tests using scripting languages (e.g., Python, Perl, Ruby)Good Written & Verbal Communication SkillsPresentation SkillsDefine and assist in the creation of operational and executive security reports and dashboards
Thanks and Regards,
Manish Kumar
P: 972-430-7053 Email:
manish.k@saxonglobal.com
Linkedin:
linkedin.com/in/manishtechie14
Suite # 660 1320 Greenway Drive, Irving, TX 75038
Website:
https://saxonglobal.com/