Beschreibung
Security Test Engineer (Penetration Testing)
A Security Test Engineer (Penetration Testing) is urgently required for an ASAP start with a major client in Frankfurt (very long term project).
The Security Test Engineer (Penetration Testing) will have recent and relevant working experience as a software security tester, security testing experience in a Financial environment would be an advantage.
The Security Test Engineer (Penetration Testing) will have the following skills and experience -
- Valid (Current) CEH, OSCP,ECSA, ECSP, Sans, GIAC Certification.
- Minimum 5 years' penetration testing experience, ideally with significant mobile testing.
- Experience with OWASP testing Guide/Open Source Security Testing Methodology Manual
- Fluent in at least 1 programming language.
- Some of the following: Burp, Fiddler, OWASP Zap, BeEF, and at least one commercial solution (WebInspect, AppScan, or similar).
- Experience deploying enterprise security testing solutions.
- Familiarity with common network vulnerability/penetration testing tools including, but not limited to, Metasploit, vulnerability scanners, Kali Linux, and Nmap.
The Security Test Engineer (Penetration Testing) will be responsible for the following -
- Execution of security tests on a wide variety of internal and external facing applications
- Assisting with the continuous improvement of the processes critical to the success of the team, handling one or more Static-, dynamic and/or penetration tests and supporting the initial and technical intake process.
- Primary responsibility to provide internal and external network penetration testing, create actionable reporting based on findings, application testing, including black-, grey-, White Box, code reviews and reverse engineering, software development advisory, network and software architecture reviews and guidance, social engineering, physical and red team engagements.
- Additionally, the Security Test Engineer will support with pre intakes/technical intakes, development of security solutions and services, leveraging a robust technology portfolio, to address complex industry recognized information security trends and challenges faced by our respective clients.
- Assist with the delivery of pre-sales and post-sales support of the technical security solutions and services.
Please get in touch for an immediate response.