Ver oferta completa
PENTESTER
Ciudad de México
- Ciudad de México
Descripción de la oferta de empleo
Application security engineer
Responsibility The Application Security Tester is responsible for detecting threats and
vulnerabilities in target systems, networks, and applications by conducting
systems, network, and web vulnerability assessment / security testing. The
Application Security Tester identifies the security flaws and weaknesses in the
systems that can be exploited to cause business risk, and provides crucial
insights into the most pressing issues, suggesting how to prioritize security
resources Activities ·
Conducts vulnerability assessment on the target IT Infrastructure,
applications, and related information assets ·
Conducts walk-through of the assessment report to the stakeholders and
help define remediation plan ·
Creates process improvement by identifying inefficiencies and solutions
for process improvements ·
Develops and maintains a set of operational and forward-looking security
metrics ·
Follows a standard methodology to identify and/or detect threats to the
IT infrastructure, applications, and other information assets ·
Interacts with partners as needed to explain work product, security
techniques, methodology and results to ensure appropriate business value ·
Oversees monitoring of security reports to identify issues and follow
these issues to resolution Performs web application security assessments (e.g.,
exploiting web app vulnerabilities such as SQL injection, cross-site scripting,
parameter manipulation, session hijacking, etc. ·
Prepares system security reports by collecting, analyzing, and
summarizing data and trends; presents reporting for management review ·
Promotes cross-department collaboration and communication to ensure
appropriate processes, procedures and tools are installed, monitored, and
effectively operating and alerting ·
Provides direction and act as an escalation point on projects and issues
to other team members, ·
Provides technical security consulting support to address complex
business and technology projects and requests ·
Updates job knowledge by tracking and understanding emerging security
practices and standards; participating in educational opportunities; reading
professional publications; maintaining personal networks; participating in
professional organizations ·
Works with various teams to follow a pre-assessment plan/ and assessment
schedule for every assessment, conduct threat assessment, and deliver an
assessment report ·
Writes clear implementation guidelines for the implementation engineers Required
knowledge ·
SQL Injection. ·
Cross Site scripting ·
Parameter Manipulation ·
SAST and DAST ·
OWASP top 10 ·
CVSS and how to apply ·
NMAP Benefits 20 vacation days per year Aguinaldo superior Major and minor medical insurance Grocery Vouchers Learning Platform
Responsibility The Application Security Tester is responsible for detecting threats and
vulnerabilities in target systems, networks, and applications by conducting
systems, network, and web vulnerability assessment / security testing. The
Application Security Tester identifies the security flaws and weaknesses in the
systems that can be exploited to cause business risk, and provides crucial
insights into the most pressing issues, suggesting how to prioritize security
resources Activities ·
Conducts vulnerability assessment on the target IT Infrastructure,
applications, and related information assets ·
Conducts walk-through of the assessment report to the stakeholders and
help define remediation plan ·
Creates process improvement by identifying inefficiencies and solutions
for process improvements ·
Develops and maintains a set of operational and forward-looking security
metrics ·
Follows a standard methodology to identify and/or detect threats to the
IT infrastructure, applications, and other information assets ·
Interacts with partners as needed to explain work product, security
techniques, methodology and results to ensure appropriate business value ·
Oversees monitoring of security reports to identify issues and follow
these issues to resolution Performs web application security assessments (e.g.,
exploiting web app vulnerabilities such as SQL injection, cross-site scripting,
parameter manipulation, session hijacking, etc. ·
Prepares system security reports by collecting, analyzing, and
summarizing data and trends; presents reporting for management review ·
Promotes cross-department collaboration and communication to ensure
appropriate processes, procedures and tools are installed, monitored, and
effectively operating and alerting ·
Provides direction and act as an escalation point on projects and issues
to other team members, ·
Provides technical security consulting support to address complex
business and technology projects and requests ·
Updates job knowledge by tracking and understanding emerging security
practices and standards; participating in educational opportunities; reading
professional publications; maintaining personal networks; participating in
professional organizations ·
Works with various teams to follow a pre-assessment plan/ and assessment
schedule for every assessment, conduct threat assessment, and deliver an
assessment report ·
Writes clear implementation guidelines for the implementation engineers Required
knowledge ·
SQL Injection. ·
Cross Site scripting ·
Parameter Manipulation ·
SAST and DAST ·
OWASP top 10 ·
CVSS and how to apply ·
NMAP Benefits 20 vacation days per year Aguinaldo superior Major and minor medical insurance Grocery Vouchers Learning Platform
Ver oferta completa
Detalles de la oferta
Empresa
- OCDTECH
Fecha de publicación
- 13/03/2024
Fecha de expiración
- 11/06/2024
