Information Security Attack and Penetration Consultant
Sunera is a leading provider of risk-based consulting services, including Information Security, Data Privacy, Data Analytics, and Internal Audit. We were founded in 2005 on the belief that risk management should be pragmatic, proactive, and based on client needs. We have grown into a major player in the technology and business consulting industry and have operations across North America. Sunera has pioneered a new model for providing effective, relevant, and forward-thinking consulting for it clients. For its employees, Sunera has developed a culture built on teamwork, professional growth, and a commitment to quality. For these reasons, Sunera enjoys tremendous employee satisfaction and retention rates. Sunera has been recognized as one of the Best Places to Work in Tampa Bay.
The ideal candidate will possess a broad skill set and have the capacity for learning required to sustain our client engagements. The responsibilities that you will be given will make the most of your strengths, and challenge you to develop even further in a supportive, team-focused atmosphere.
- Configure, run and monitor automated security testing tools
- Perform manual validation of vulnerabilities
- Perform manual penetration testing of client systems, web sites and networks to discover vulnerabilities
- Thoroughly document exploit chain/proof of concept scenarios for client consumption
- Perform overnight work as necessary
- Work onsite and at client locations as necessary
- Work successfully from home office environment
EXPERIENCE:
- A degree or certificate in management information systems, security, mathematics, computer science or related field or 2-3 years of relevant information security experience
- Working with technical security controls
- Programming experience in Python, PHP, Perl, Ruby, .NET or other interpreted or compiled languages
- Familiarity with vulnerability assessment and penetration best practices
- Experience with vulnerability and penetration testing techniques and tools
- Desire to obtain one or more security-related certifications such as Certified Information Systems Security Professional (CISSP), GIAC Penetration Tester (GPEN), GIAC Certified Incident Handler (GCEH), Offensive Security Certified Expert (OSCE), and Offensive Security Certified Professional (OSCP)
TECHNICAL SKILLS:
The ideal candidate should possess a detailed knowledge of one or more of the following technologies:
- Security testing tools including Metasploit, Nmap, Nessus, Burp Suite
- Linux operating systems
- Microsoft technologies
- Mobile application programming and/or security testing
- Wireless technologies
- Web application technologies
- Network implementation (operational and security)
- Telephony Technologies (analog and IP)
- Social engineering
- Physical security
- Source code analysis software
- Intermediate to advanced Microsoft Office Suite (i.e., Word, Excel, PowerPoint)
EDUCATION:
- A degree or certificate in management information systems, mathematics, computer science or related field or 2-3 years of relevant information security experience
TRAVEL REQUIRED: Travel up to 20%
LINK to APPLY: https://sunera.com/careers/job-openings/