5 joburi disponibile

*Position is bonus eligible* Prestigious Financial Institution is currently seeking a Lead Penetration Testing and Vulnerabilities Engineer. Candidate will increase the security posture against all threats that put organizational operations, assets or individuals at risk. The Security Penetration Tester will engage in targeted testing consisting of threat intelligence gathering, network & web application penetration testing, Cloud security testing, physical security testing, mobile device security testing, and more. The Security Penetration Testing Team primarily performs non-covert informed white-box tests. The position will also involve interaction with multiple other Security teams such as Cyber Defense, Security Assurance, etc. and various IT teams to coordinate future security penetration tests and re-test past identified findings that have been remediated. Responsibilities: The ideal candidate will have extensive experience in more than one of the following: Open-Source Intelligence, Network Penetration Testing, Web Application Testing, Mobile Application and Device Testing, as well as a deep knowledge of scanning tools and vulnerability enumeration. Experience testing database Servers using custom Scripting and automation in at least one proficient programming language is required. This candidate must be driven, an excellent communicator, enthusiastic, a good mentor and have the desire to stay ahead of todays emerging threats and attack techniques . Assist the Security Penetration Testing Team to perform testing based on organizationally defined scope with strict adherence to the agreed-upon rules of engagement. Conduct various Security Penetration Testing Team activities such as: Intelligence Gathering, Network/Operating System/Application Penetration Testing, Web Application Penetration Testing, Mobile Application Testing, Cloud Security Testing, etc. Conduct ad-hoc white-box penetration testing work of infrastructure that is still currently in Development, or in need of pre-Production penetration testing Coordinate with IT owners to re-test and validate remediated Security Penetration Testing Team findings Execute Open Source Intelligence Collection and Analysis Techniques (OSINT); leverage available resources and develop custom tools. Understand vulnerabilities and develop relevant exploits for use during Security Penetration Testing Team activities. Verify vulnerability false positives Perform security risk assessment, threat analysis and threat modelling. Perform independent reviews of security, network, and applications. Plan/Design/Execute security related activities and create artifacts. Stay on-time, on-budget, and within scope of testing activities. Develop clear detailed reports and recommendations based on concrete evidence. Debrief users and provide remediation strategy on findings. Ensure alignment of security controls in testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices. Assist management with the improvement of policies and procedures to support Security Testing activities as well as other security duties which may arise. Participate in developing a security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends. Adhere to the best practices and work for delivering secured and quality products. Consult with technical experts and system owners on all aspects of Information Security and Compliance. Work closely with Production Support staff, Incidence Response, and IT infrastructure to increase organizational security posture. Support security objectives and remediation efforts relating to Security Testing. Supports and successfully completes Audits. Cross-train the other Security Penetration Testers. Cross-train other teams within Security Services and IT departments to provide subject matter knowledge of a specific adversarial threat/risk, or to assist with remediation path recommendations Participate in Lessons Learned process to provide information to help improve practices, methodologies, tools, and other technologies. Stay current on Threat Intelligence, emerging technology trends, and the overall threat landscape. Advise IT on current and emerging threats, their attack vectors, and how to mitigate them. Provide leadership, share knowledge and mentor team members. Support Security Penetration Testing Team management and activities and be a team player. Perform other duties as assigned. Qualifications: Strong enthusiasm to stay up-to-date on Threat Intelligence and learn new vulnerability and exploits on a regular basis Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Exceptional tactical planning skills based on long-term strategic goals. Exceptional verbal/written communication skills to be able to articulate ideas clearly and concisely. Excellent listening skills. Excellent focused domain areas of expertise as well as a good breadth of experience across Network/Application Penetration Testing, Web Application Penetration Testing, Mobile Application Penetration Testing, Infrastructure Development, Open Source Intelligence, and more. Proven due diligence and research ability via open-source avenues and technology. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and probe/exploit a diverse range of Network and Internet Protocols. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming language. Ability to facilitate meetings and conversations. Ability to work with business users, understand their needs and translate those needs to the final project deliverables. Nice to have experience working on critical infrastructure in a regulated environment. Technical Skills: Strong proficiency in Network, Web Application, Cloud, and Mobile Device security testing Demonstrated exploit and vulnerability experience Strong proficiency in intelligence gathering. Strong experience with custom Scripting (Python, Powershell, Bash, etc.) and process automation. Strong experience with database security testing (MSSQL, DB2, MySQL, etc.). Strong proficiency with common penetration testing tools (Kali, Metasploit, Nmap, Qualys, Nessus, Nexpose, Burp Suite, Wireshark, Recon-NG, Ettercap/Bettercap, Hashcat, Bloodhound, Sublist3r, Rubeus, Mimikatz, CrackMapExec, Exploitdb, Impacket, etc.). Track record of vulnerability research and CVE assignments Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Proficient in creating content with Microsoft Office (Word, Excel, PowerPoint, Visio). Proficient in basic document management in a Microsoft SharePoint environment. Experience with dedicated document management tools (eg, DMS, PolicyTech) is a plus. Experience with using ServiceNow is a plus. BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university is desired but not required 3+ Years experience of Penetration testing 6+ Years experience in Information Assurance or Information Security environment. Security-related certifications (OSCP, OSWE, OSCE, GPEN, GXPN, GWAPT, ARTE, etc.) highly desired.

*Position is bonus eligible* Prestigious Financial Institution is currently seeking a Lead Penetration Testing and Vulnerabilities Engineer. Candidate will increase the security posture against all threats that put organizational operations, assets or individuals at risk. The Security Penetration Tester will engage in targeted testing consisting of threat intelligence gathering, network & web application penetration testing, Cloud security testing, physical security testing, mobile device security testing, and more. The Security Penetration Testing Team primarily performs non-covert informed white-box tests. The position will also involve interaction with multiple other Security teams such as Cyber Defense, Security Assurance, etc. and various IT teams to coordinate future security penetration tests and re-test past identified findings that have been remediated. Responsibilities: The ideal candidate will have extensive experience in more than one of the following: Open-Source Intelligence, Network Penetration Testing, Web Application Testing, Mobile Application and Device Testing, as well as a deep knowledge of scanning tools and vulnerability enumeration. Experience testing database Servers using custom Scripting and automation in at least one proficient programming language is required. This candidate must be driven, an excellent communicator, enthusiastic, a good mentor and have the desire to stay ahead of todays emerging threats and attack techniques . Assist the Security Penetration Testing Team to perform testing based on organizationally defined scope with strict adherence to the agreed-upon rules of engagement. Conduct various Security Penetration Testing Team activities such as: Intelligence Gathering, Network/Operating System/Application Penetration Testing, Web Application Penetration Testing, Mobile Application Testing, Cloud Security Testing, etc. Conduct ad-hoc white-box penetration testing work of infrastructure that is still currently in Development, or in need of pre-Production penetration testing Coordinate with IT owners to re-test and validate remediated Security Penetration Testing Team findings Execute Open Source Intelligence Collection and Analysis Techniques (OSINT); leverage available resources and develop custom tools. Understand vulnerabilities and develop relevant exploits for use during Security Penetration Testing Team activities. Verify vulnerability false positives Perform security risk assessment, threat analysis and threat modelling. Perform independent reviews of security, network, and applications. Plan/Design/Execute security related activities and create artifacts. Stay on-time, on-budget, and within scope of testing activities. Develop clear detailed reports and recommendations based on concrete evidence. Debrief users and provide remediation strategy on findings. Ensure alignment of security controls in testing program and supporting services and related policies and procedures with applicable regulations and industry standard best practices. Assist management with the improvement of policies and procedures to support Security Testing activities as well as other security duties which may arise. Participate in developing a security roadmap, adopt security best practices, and implement new ideas and innovations according to the industry trends. Adhere to the best practices and work for delivering secured and quality products. Consult with technical experts and system owners on all aspects of Information Security and Compliance. Work closely with Production Support staff, Incidence Response, and IT infrastructure to increase organizational security posture. Support security objectives and remediation efforts relating to Security Testing. Supports and successfully completes Audits. Cross-train the other Security Penetration Testers. Cross-train other teams within Security Services and IT departments to provide subject matter knowledge of a specific adversarial threat/risk, or to assist with remediation path recommendations Participate in Lessons Learned process to provide information to help improve practices, methodologies, tools, and other technologies. Stay current on Threat Intelligence, emerging technology trends, and the overall threat landscape. Advise IT on current and emerging threats, their attack vectors, and how to mitigate them. Provide leadership, share knowledge and mentor team members. Support Security Penetration Testing Team management and activities and be a team player. Perform other duties as assigned. Qualifications: Strong enthusiasm to stay up-to-date on Threat Intelligence and learn new vulnerability and exploits on a regular basis Exceptional analytical, problem solving and troubleshooting skills with the ability to exercise good judgment while developing creative solutions. Exceptional tactical planning skills based on long-term strategic goals. Exceptional verbal/written communication skills to be able to articulate ideas clearly and concisely. Excellent listening skills. Excellent focused domain areas of expertise as well as a good breadth of experience across Network/Application Penetration Testing, Web Application Penetration Testing, Mobile Application Penetration Testing, Infrastructure Development, Open Source Intelligence, and more. Proven due diligence and research ability via open-source avenues and technology. Strong familiarity with enterprise technologies; strong technical background and understanding of security-related technologies; prefer operational experience as an administrator, engineer, or developer and direct experience testing in commercial cloud environments (AWS, Azure, IaaS/PaaS/SaaS). Good applicable knowledge of policy and procedure development, systems analysis, Information Assurance (IA) policy, vulnerability management, and risk management Good understanding of regulatory standards including CSF, NIST, PCI, SSAE 16, SAS 70, HIPPA, FIPS 199, COBIT 5 and others as needed. Strong knowledge of cryptography (symmetric, asymmetric, hashing) and its various applications. Strong knowledge of common enterprise infrastructure technology stacks and network configurations. Exhibit ability to understand and probe/exploit a diverse range of Network and Internet Protocols. Exhibit ability to understand and modify code in a diverse range of programming languages and frameworks; must have direct practical experience with one or more high level programming language. Ability to facilitate meetings and conversations. Ability to work with business users, understand their needs and translate those needs to the final project deliverables. Nice to have experience working on critical infrastructure in a regulated environment. Technical Skills: Strong proficiency in Network, Web Application, Cloud, and Mobile Device security testing Demonstrated exploit and vulnerability experience Strong proficiency in intelligence gathering. Strong experience with custom Scripting (Python, Powershell, Bash, etc.) and process automation. Strong experience with database security testing (MSSQL, DB2, MySQL, etc.). Strong proficiency with common penetration testing tools (Kali, Metasploit, Nmap, Qualys, Nessus, Nexpose, Burp Suite, Wireshark, Recon-NG, Ettercap/Bettercap, Hashcat, Bloodhound, Sublist3r, Rubeus, Mimikatz, CrackMapExec, Exploitdb, Impacket, etc.). Track record of vulnerability research and CVE assignments Experience with Mainframes, Windows, Unix, MacOS, Cisco, platforms and controls. Proficient in creating content with Microsoft Office (Word, Excel, PowerPoint, Visio). Proficient in basic document management in a Microsoft SharePoint environment. Experience with dedicated document management tools (eg, DMS, PolicyTech) is a plus. Experience with using ServiceNow is a plus. BS in Computer Science, Information Management, Information Security or other comparable technical degree from an accredited college/university is desired but not required 3+ Years experience of Penetration testing 6+ Years experience in Information Assurance or Information Security environment. Security-related certifications (OSCP, OSWE, OSCE, GPEN, GXPN, GWAPT, ARTE, etc.) highly desired.

NO SPONSORSHIP EXPERTY CYBER DEFENSE ENGINEER SALARY:$200k - $250k plus 20% bonus LOCATION: REMOTE EXCEPT AK, ND, NE, HI, OK, VT, ME, WY, NH, PUERTO RICO SELLING POINTS: SOAR Detection engineering, SIEM log management, incident response, processes detect and prevent cyber-attacks. You will design develop deploy cyber defense tools, platform threat detection, forensic investigations, threat analysis and build task automation using python. Cyber defense operations on-call support 8 years detection engineering incident response SIEM SOAR EDR NGFW network monitoring APIs threat defense SIEM analytics cloud engineering LLMS ML/AI endpoint detection response network generation machine learning models Firewalls. We are seeking an experienced Cybersecurity Defense Engineer to join the cybersecurity engineering team. In this position, you will architect, develop, and implement advanced technical solutions that empower our cyber defense investigations and incident response teams. You will work independently and in teams to design and implement effective and sustainable capabilities to detect and prevent cyber-attacks, optimize our incident response processes, and enhance the effectiveness of mitigation, containment, and recovery. Responsibilities Solution Engineering: design develop, and deploy cyber defense tools, platforms, and capabilities that support threat detection, incident response, and forensic investigations. Technical Leadership: serve as a subject matter expert on cyber defense engineering, providing guidance and technical insights to our customers, your peers, and the cyber engineering strategy. Threat Analysis: collaborate with cyber defense operations to analyze emerging threats and current gaps in technical capabilities, implementing measures to strengthen defense mechanisms. Develop and refine threat defense analytics to effectively detect cyber-attacks Build task automation and procedure orchestration to support cyber defense operations. Qualifications Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Relevant experience and relevant experience within the military is acceptable in lieu of a degree. 8+ years of experience in one or more of the following areas: cybersecurity engineering, detection engineering, incident response, or a similar role, with a proven track record of independent problem solving in high-stakes environments. Python for task automation Hands-on experience deploying and configuring security platforms, such as SIEM, SOAR, EDR, NGFW, and network monitoring tools. Experience integrating cyber defense tools and utilizing APIs for process orchestration and task automation. Experience building and deploying threat defense (SIEM) analytics using a detection engineering pipeline. Strong analytical skills with a keen attention to detail. Strong technical writing skills including documentation development, process mapping, and visualization, with the ability to translate complex technical concepts for a variety of technical audiences. Proven ability to work autonomously, lead projects from conception to implementation, and overcome roadblocks in a highly collaborative environment. Nice to Have: Cloud engineering experience. Experience implementing LLMs, ML, or other advanced analytic and decision-making support capabilities into enterprise cybersecurity services and workflows.

*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Enterprise Company is currently seeking a Principal Cyber Defense Security Engineer with strong Python development and Scripting experience. Candidate will architect, develop, and implement advanced technical solutions that empower our cyber defense investigations and incident response teams. You will work independently and in teams to design and implement effective and sustainable capabilities to detect and prevent cyber-attacks, optimize our incident response processes, and enhance the effectiveness of mitigation, containment, and recovery. You must be comfortable with failing quickly and creating value through iteration and experimentation. You will not be alone in your efforts; you will be part of a supportive and energetic team of doers who will be there to lend a hand, brainstorm solutions, and encourage you when you hit roadblocks. Responsibilities: Solution Engineering: design develop, and deploy cyber defense tools, platforms, and capabilities that support threat detection, incident response, and forensic investigations. Technical Leadership: serve as a subject matter expert on cyber defense engineering, providing guidance and technical insights to our customers, your peers, and the cyber engineering strategy. Threat Analysis: collaborate with cyber defense operations to analyze emerging threats and current gaps in technical capabilities, implementing measures to strengthen defense mechanisms. Develop and refine threat defense analytics to effectively detect cyber-attacks against DDC. Build task automation and procedure orchestration to support cyber defense operations. Problem Solving: capable of working, both independently and in teams, to troubleshoot and resolve complex cyber engineering challenges, identify the root cause of capability outages and errors, and develop sustainable solutions. Innovation & Continuous Improvement: stay abreast of the latest trends and technologies in cybersecurity, applying best practices to continuously enhance our defense strategies and capabilities. Documentation: maintain accurate procedures and documentation for all capabilities and services in scope for the Platforms & Automation team. On-Call: support cyber defense capability availability incidents and support the cyber defense operations team while hands-on experience with our investigation process to identify automation opportunities. Qualifications: Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field. Relevant experience and relevant experience within the military is acceptable in lieu of a degree. 8+ years of experience in one or more of the following areas: cybersecurity engineering, detection engineering, incident response, or a similar role, with a proven track record of independent problem solving in high-stakes environments. Significant experience using Python for task automation, procedure orchestration, and capability development. Hands-on experience deploying and configuring security platforms, such as SIEM, SOAR, EDR, NGFW, and network monitoring tools. Experience integrating cyber defense tools and utilizing APIs for process orchestration and task automation. Experience building and deploying threat defense (SIEM) analytics using a detection engineering pipeline. Strong analytical skills with a keen attention to detail. Strong technical writing skills including documentation development, process mapping, and visualization, with the ability to translate complex technical concepts for a variety of technical audiences. Proven ability to work autonomously, lead projects from conception to implementation, and overcome roadblocks in a highly collaborative environment. Cloud engineering experience. Experience implementing LLMs, ML, or other advanced analytic and decision-making support capabilities into enterprise cybersecurity services and workflows.

Expert Cybersecurity Engineer Salary: Open + Bonus Location: Remote Not available in the following states: AK, ND, NE, HI, OK, VT, ME, WY, NH, Puerto Rico, Washington DC *We are unable to provide sponsorship for this role* Qualifications Bachelor's degree. Relevant experience within the military is acceptable in lieu of a degree. 8+ years of experience in the following areas: cybersecurity engineering, detection engineering, incident response, threat and vulnerability management, forensic investigations, network monitoring. Significant experience using Python for task automation, procedure orchestration, capability development, UI Front End development Proficient in Azure security engineering Hands-on experience deploying and configuring security platforms, such as SIEM, SOAR, EDR, NGFW, and network monitoring tools. Experience integrating cyber defense tools and utilizing APIs for process orchestration and task automation. Experience building and deploying threat defense (SIEM) analytics using a detection engineering pipeline. Strong analytical skills with a keen attention to detail. Strong technical writing skills including documentation development, process mapping, and visualization, with the ability to translate complex technical concepts for a variety of technical audiences. Proven ability to work autonomously, lead projects from conception to implementation, and overcome roadblocks in a highly collaborative environment. Responsibilities Solution Engineering: design, develop, and deploy cyber defense tools, platforms, and capabilities that support threat detection, incident response, and forensic investigations. Technical Leadership: serve as a subject matter expert on cyber defense engineering, providing guidance and technical insights to our customers, your peers, and the cyber engineering strategy. Threat Analysis: collaborate with cyber defense operations to analyze emerging threats and current gaps in technical capabilities, implementing measures to strengthen defense mechanisms. Develop and refine threat defense analytics to effectively detect cyber-attacks against DDC. Build task automation and procedure orchestration to support cyber defense operations. Problem Solving: capable of working, both independently and in teams, to troubleshoot and resolve complex cyber engineering challenges, identify the root cause of capability outages and errors, and develop sustainable solutions. Innovation & Continuous Improvement: stay abreast of the latest trends and technologies in cybersecurity, applying best practices to continuously enhance our defense strategies and capabilities. Documentation: maintain accurate procedures and documentation for all capabilities and services in scope for the Platforms & Automation team. On-Call: support cyber defense capability availability incidents and support the cyber defense operations team while hands-on experience with our investigation process to identify automation opportunities.