Lead Cyber Security Test SME

Location: Austin, TX, United States
Date Posted: 08-30-2018
We are currently seeking a Security Test Engineer to join our Security & Resiliency team, based in Hopkinton, MA or Austin, TX.
Key Responsibilities
  • Lead the security testing strategy in the organization
  • Lead security testing education strategy to teach other engineers  how to find and address security issues in products
  • Research and deploy the cutting edge testing tools that help advance security testing
  • Lead security testing engagements with product teams and mentor engineers on security testing  methodologies and techniques
  • Write custom tools that can help product teams in doing efficient security testing
  • Work with developers and testing/quality engineers to provide solutions for discovered security issues and provide product teams with scripts and tools used to produce the issues
  • Find the 0-days in the company's products before anyone else does
  • Document and share with the product teams which issues are discovered including the steps to reproduce and mitigate them
  • Document generic test cases for publication in the organization knowledgebase
  • Collaborate and contribute to security testing community across the company to share best practices
  • Write white papers on different testing topics and present in conferences

Essential Requirements
  • Bachelor’s Degree in Computer Science or related field
  • 12+ years of related experience
  • Hands-on experience in dynamic analysis, container testing, fuzzing, OWASP top 10, SANS/CWE top 25 and vulnerability scanning
  • Experience in understanding and leveraging reports from scanners such as IBM Appscan, Nessus, Qualys, Twistlock
  • Proven experience in discovering authentication and authorization bypass defects
  • Experience in finding 0-days and writing exploit
  • Experience in extending the tools like ZAP, BURP…
  • Be able to think like an attacker and make sure that Dell products are ready to stand up to current and future attacks
  • Subject Matter Expert on software vulnerability types and exploitation
  • Knowledge of how to test code and applications across various platforms (Linux, Windows, etc.) for security issues
  • Knowledge of at least one programming or scripting language such as Python, Java, C, Ruby etc.
  • Strong understanding of the network stack including ports and protocols
  • Experience performing application black-box and white-box penetration testing preferred
  • Certifications such as CEH, CISSP, Security+ a bonus
  • Good presentation & documentation skills

Our client offers highly competitive salaries, bonus programs, world-class benefits, and unparalleled growth and development opportunities — all to create a compelling and rewarding work environment.

If you can ensure the highest level of security for their customers, then we certainly want to speak with you.
For more information, please apply below or contact us
this job portal is powered by CATS