The primary objectives of the Security Penetration Tester is to deliver and enhance various security services provided to internal IBM SWG teams.
The services include technical security assessments of applications , SAAS and infrastructure . Additionally they also need to understand and contribute to security design & threat model risk assessments.
This is a hands-on role, requiring technical skills from the system to the application layer.
Perform application ,infrastructure penetration tests using popular web security testing tools/methods
Perform security reviews of application designs, source code and deployments as required, covering all types of applications (web application, web services, mobile applications, thick client applications, SaaS)
Participate in security Assessments of networks, systems and applications
Work on improvements for provided security services, including the continuous enhancement of existing methodology material and supporting assets.
Bachelor degree or higher, technical discipline preferred
3-5 years of working experience in web security, preferably with exposure to web application security testing (application penetration tests)
Working knowledge of web security principles, techniques and technologies using various tools like ZAP,Burp,AppScan,Nessus etc…
Good understanding of network protocols, design and operations
Strong analytical skills and efficient problem solving skills
Willingness to learn
Good English communication skills (written and oral)
Subscribe with us, to get desired jobs to your inbox