Senior Penetration Tester â Product Security
Senior Penetration Tester â Product Security
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
At Bishop Fox security isnt just a jobits our passion. As leaders in continuous offensive security and penetration testing we deliver world-class customer experiences. Trusted by over a quarter of the Fortune 100 half of the Fortune 10 and top global media companies we help safeguard digital landscapes. Our Cosmos platform honored as Best Emerging Technology by SC Media exemplifies our commitment to innovation.
Joining Bishop Fox means collaborating with a curious and dedicated team. Youll tackle complex challenges for some of the worlds most recognized organizations securing their networks against real-world threats. With nearly 20 years of industry contributionsincluding 16 open-source tools and 50 security advisories published in the past five yearswere committed to making the digital world safer.
Were looking for talented experienced professional hackers to help us secure some of the worlds most complex software and sophisticated technologies. Youll be working alongside our US and internationally-based teams supporting clients across multiple industries.
Responsibilities
Youre a penetration tester who knows their way around source code. Youve plundered apps and pillaged networks (legally of course). You have a passion for hacking and information security. You may also have written a few blog posts about your favorite hacks or have presented at a handful of conferences with an eye to doing more.
With Bishop Fox your responsibilities would include testing web applications hacking networks and reversing software. As a consultant youll work on a variety of projects which include short-term engagements and extended program work with well-established clients. Youll solve challenging technical problems and build creative solutions. As a trusted advisor youll provide your expert opinion to help our clients navigate difficult business decisions.
Requirements
Our wants are simple: be good at and most importantly love what you do. Heres a list of the skills and experience were looking for:
- Experience with OT network industrial control systems (ICS) and SCADA security
- Familiarity with protocols like MQTT CANbus modbus BACnet etc.
- Understanding of hardware security on multiple platforms such as ARM MIPS etc.
- Experience with common hardware attacks such as dumping memory attacking bootloaders manipulating UART/JTAG/I2C/SPI interfaces
- Experience with pen testing automobiles/vehicles is a plus
- Vulnerability assessments including manual testing to further evaluate the security of applications
- Penetration testing and code review (including DAST and SAST; experience with low level languages C/C)
- Understanding security fundamentals and common vulnerabilities (e.g. OWASP Top Ten) in addition to more modern web app and enterprise app vulnerabilities
- 5 years of application-focused offensive security experience in supporting a variety of engagements with clients from a variety of industries
- Additional experience in IT security engineering system and network security authentication and security protocols and/or applied cryptography
- Scripting/programming skills (C C Python Ruby Java JavaScript etc.)
- Network and web-related protocol knowledge (e.g. TCP/IP UP IPSEC HTTP HTTPS routing protocols)
- Superior communication skills (i.e. written and verbal) - including the ability to work as a mentor on engagements
- OSCP/E GWAPT GPEN or GXPN certifications are helpful but not a necessity
- Advanced relevant academic training is a definite bonus i.e. Bachelors in Computer Science
Bishop Fox has always allowed its employees to work remotely and this role could work anywhere in the United States. Our comprehensive benefits program is tailored to meet your needs at an affordable price. We embrace diversity and an inclusive culture. We value our employees and who they are which fosters a powerful and collective talent base to successfully serve our clients and the security community with unparalleled expertise.
Bishop Fox is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race color religion sex including sexual orientation and gender identity national origin disability protected veteran status or any other characteristic protected by applicable federal state or local law. All new hires must pass a background check as a condition of employment.
Interested Apply today!
Required Experience:
Senior IC
Employment Type
Full Time
