Description
Penetration Tester (Security Engineer)
One of my leading financial services clients in Amsterdam is urgently seeking a Penetration Tester (Security Engineer) for a long term contract paying excellent rates. This is an indefinite assignment. If you like it, you will never have to leave.
Interviews taking place immediately!
The Penetration Tester (Security Engineer) will IDEALLY HAVE AT LEAST 65% of the following skills:
- Any of the following certifications are a BONUS: CEH, OSCP, ECSA, ECSP, Sans, GIAC
- Significant penetration testing experience
- Experience with OWASP testing Guide/Open Source Security Testing Methodology Manual
- Expert with common web application penetration testing tools including, but not limited to Burp, Fiddler, OWASP Zap, BeEF, and at least one commercial solution (Web Inspect, AppScan, or similar).
- Experience deploying enterprise security testing solutions.
- Familiarity with common network vulnerability/penetration testing tools including, but not limited to, Metasploit, vulnerability scanners, Kali Linux, and Nmap.
- Experience with debuggers, disassemblers, binary patch diffing (eg BinDiff).
- Experience with testing automation suites such as Selenium or UFT.
- Experience with cryptography, X509 certificates, signatures, securing TLS/SSL parameters, and certificate pinning.
- Technical depth in many, if not most of the following areas: LAMP stack, Node.js, Scala/Java, iOS, Android OS, Windows Mobile, web services.
- Familiarity with Secure Development Lifecycle practices and Agile development.
The Penetration Tester (Security Engineer) will perform the following responsibilities:
- Primary responsibility to provide internal and external network penetration testing, create actionable reporting based on findings, application testing, including black-, grey-, White Box, code reviews and reverse engineering, software development advisory, network and software architecture reviews and guidance, social engineering, physical and red team engagements.
- Additionally, you will support with pre intakes/technical intakes, development of security solutions and services, leveraging a robust technology portfolio, to address complex industry recognized information security trends and challenges faced by our respective clients.
- Assist with the delivery of pre-sales and post-sales support of the technical security solutions and services.
Call or mail me now to avoid disappointment!