Description
Security Engineer - Penetration Testing Expert
One of my leading financial services clients in Leeuwarden is urgently seeking a Security Engineer - Penetration Testing Expert for a long-term contract paying excellent rates. If you like it, you will never have to leave.
Interviews taking place immediately!
The Security Engineer - Penetration Testing Expert will IDEALLY HAVE AT LEAST 65% of the following skills:
- You have a valid (Current) CEH, OSCP, ECSA, ECSP, Sans, GIAC Certification.
- Minimum 5 years' penetration testing experience.
- Experience with OWASP testing Guide/Open Source Security Testing Methodology Manual
- Fluent in at least 1 programming language.
- Expert with common web application penetration testing tools including, but not limited to Burp, Fiddler, OWASP Zap, BeEF, and at least one commercial solution (Web Inspect, AppScan, or similar).
- Experience deploying enterprise security testing solutions.
- Familiarity with common network vulnerability/penetration testing tools including, but not limited to, Metasploit, vulnerability scanners, Kali Linux, and Nmap.
- Experience with debuggers, disassemblers, binary patch diffing (eg BinDiff).
- Experience with testing automation suites such as Selenium or UFT.
- Experience with cryptography, X509 certificates, signatures, securing TLS/SSL parameters, and certificate pinning.
- Familiarity with Secure Development Lifecycle practices and Agile development.
The Security Engineer - Penetration Testing Expert will perform the following responsibilities:
Primary responsibility to provide internal and external network penetration testing, create actionable reporting based on findings, application testing, including black-, grey-, White Box, code reviews and reverse engineering, software development advisory, network and software architecture reviews and guidance, social engineering, physical and red team engagements.
Additionally, you will support with pre-intakes/technical intakes, development of security solutions and services, leveraging a robust technology portfolio, to address complex industry recognized information security trends and challenges faced by our respective clients. Assist with the delivery of pre-sales and post-sales support of the technical security solutions and services.
Call or mail me now to avoid disappointment!