Sr. Penetration Testerremote virtual home office

Profile

Description

The Senior Penetration Tester ensures that threats and vulnerabilities to the organization's business systems and applications (both in-house and cloud-based) are minimized. The Senior Threat and Vulnerability Management Engineer work assignments involve moderately complex to complex issues where the analysis of situations or data requires an in-depth evaluation of variable factors.

Responsibilities

We are seeking an experienced Penetration Tester to join our growing team. Generally, we are looking for candidates with 5 years of Cyber Security experience with a focus on penetration testing or red teaming to join our Enterprise Information Protection organization on the Cyber Threat Simulation team. The successful candidates will play a key role in assessing our cloud, mobile, API, website, controls and building custom tools to assist in testing and process automation.

Candidates should have strong business skills, and can decisions on moderately complex to complex issues regarding technical approach for project components, and performed operational tasks without direction. This senior pen testers will have considerable latitude in determining objectives and approaches to assignments. The successful candidate will play a key role in assessing our cloud, mobile, API, website, controls and building custom tools to assist in automating workloads.

Preferred Experience:

Experience with performing white and grey box penetration testing and system exploitation against APIs, Web, Mobile, and controls.

Development experience using Python, PowerShell, C, or C Experience with conducting penetration and malicious user testing in Cloud environments, including Amazon Web Services (AWS), Azure, and on premise systems

Solid knowledge and understanding of development life cycle (SSDLC), CI/CD pipelines and Agile methodologies

Understanding of common software security issues and remediation techniques (OWASP Top 10, SANS 25, Mitre ATT&CK, etc.)

Experience with analyzing vulnerabilities and delivering clear and coherent written reporting, identifying network risks and providing mitigation recommendations

Excellent knowledge of Windows/AD/Linux systems administration and vulnerabilities

Required Qualifications

Bachelor's Degree

5 years experience as a Penetration Tester

Highly experienced with the installation and configuration of firewalls, intrusion detection systems, anti-virus software, and vulnerability scanning systems.

Must be passionate about contributing to an organization focused on continuously improving consumer experiences

An organized and independent worker

Preferred Qualifications

Master's Degree in a Technical Field

Security Certification

OSCP, CEH, CEPT, GPEN, GXPN, CRTOP, CPT, LPT Master, or CompTIA PenTest Certification

Must be passionate about contributing to an organization focused on continuously improving consumer experiences

Bachelor's degree in an IT-related field required; post-graduate degree is a bonus, but not required.

Five (5) or more years of experience in or cyber security performing Penetration Testing or Red Teaming.

Additional Information

Scheduled Weekly Hours

40

Company info

Humana Inc.
Website : http://www.humana.com