Senior Security/Pen Tester (QR3816)

Amsterdam  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Description

Functie : Senior Security/Pen Tester (QR3816)
Start : , 36 uur per week
Periode : 6 mnd+
Omgeving : Amsterdam
Omschrijving Senior Security/Pen Tester:
Security Test Engineer - Static- Dynamic - Penetration Testing Expert
The DEVOPS team islooking for a qualified security test analyst with recent and relevant working experience as a software security tester.
Security testing experience in a Financial environment could be advantageous but not determinant. As member of a DEVOPS team, you'll be responsible for the execution of security tests on a wide variety of internal and external facing applications.
As a member of the team you will assist with the continuous improvement of the processes critical to the success of the team. In this role, you will work in a two week sprints handling one or more Static-, dynamic and/or penetration tests and supporting the initial and technical intake process.
What do we expect Senior Security/Pen Tester?
- B.S. in Computer Science or related technical major (M.S./PhD preferred) or significant job experience.
- You have a valid (Current) CEH, ECSA, ECSP, Sans, GIAC Certification.
- Minimum 5 years penetration testing experience, with significant mobile testing.
- Experience with OWASP testing Guide / Open Source Security Testing Methodology Manual
- Development experience preferred.
- Expert with common web application penetration testing tools including, but not limited to Burp, Fiddler, OWASP Zap, BeEF, and at least one commercial solution (WebInspect, AppScan, or similar).
- Experience deploying enterprise security testing solutions.
- Familiarity with common network vulnerability/penetration testing tools including, but not limited to, Metasploit, vulnerability scanners, Kali Linux, and Nmap.
- Experience with debuggers, disassemblers, binary patch diffing (e.g. BinDiff).
- Experience with testing automation suites such as Selenium. UFT
- Technical depth in many, if not most of the following areas: LAMP stack, Node.js, Scala/Java, iOS, Android OS, Windows Mobile, web services, and certificate pinning.
- Familiarity with Secure Development Lifecycle practices and Agile development.
- Thought leadership in the security field, with demonstrable contributions to industry groups strongly desired.
- Artful communication skills and organizational savvy, to steer peers and leadership toward solutions that carefully balance business, risk, compliance, and engineering concerns.
- Eagerness to challenge the status quo, balanced with a reasonable and methodical approach to effecting change.
- A fun and positive attitude!
Responsibilities Senior Security/Pen Tester:
- Primary responsibility to provide internal and external network penetration testing
- Create actionable reporting based on findings
- Application testing, including black-, grey-, white box
- Code reviews and reverse engineering
- Software development advisory
- Network and software architecture reviews and guidance
- Social engineering, physical and red team engagements
- Additionally you will support with pre intakes/technical intakes
- Development of security solutions and services
- Leveraging a robust technology portfolio, to address complex industry recognized information security trends and challenges faced by our respective clients
- Assist with the delivery of pre-sales and post-sales support of the technical security solutions and services.
Senior Security/Pen Tester
Start date
n.a
From
Qualogy
Published at
03.05.2016
Project ID:
1122091
Contract type
Freelance
To apply to this project you must log in.
Register