Lead Security Penetration Test Engineer

Berkshire  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Description

Lead Security Penetration Test Engineer
Slough
£600p/d
6 months+

Skills:

- Vulnerability management process
- Knowledge of ArcSight loggers and console
- Have technical knowledge and hands-on experience with IT/information security/cyber security standards and frameworks such as ISO27001, NIST CSF and GITC.
- Good experience in Application Security Testing (SAST, DAST, SCA, IAST, MAST, RASP)
- Good understanding of OWASP, PTES and other penetration testing methodologies
- Experience of security testing toolsets eg MicroFocus Fortify SCA (Static Analysis) We-bInspect (Dynamic Vulnerability); App Defender; Black Duck; Sonatype (opensource); and Qualys (DAST)
- Experience in Security QA Testing (compliance controls, Threat Management, Security Architecture Assessment, Cloud 3rd Party Risk Assessment, Vulnerability Mgt.)
- Understanding on Penetration Testing and can articulate clearly the actions required from Penetration Testing results
- Development and/or source code review experience in one or more of these languages: C/C++, C#, VB.NET, ASP, PHP, Python or Java.
- Good understanding of network and OS principles
- Expertise in HP ALM, Jira, X-Ray and Confluence
- Experience of security testing, test life cycle, non-functional, functional and security test tools
- Good understanding of OWASP, PTES and other penetration testing methodologies
- Experience of functional automation tools like selenium
- Track record of developing test security scripts, detailed test planning and test delivery of complex requirements involving multiple applications and platforms

Start date
ASAP
Duration
6 months
From
ARM (Advanced Resource Managers)
Published at
30.10.2020
Project ID:
1991651
Contract type
Freelance
To apply to this project you must log in.
Register