Senior Penetration Tester
Company: Paylocity Corporation
Location: Arlington Heights, IL]
Posted on: January 25, 2016
Job Description:
Position: Senior Penetration Tester (Arlington Heights,
Illinois) Duties: Automate security assessments and penetration testing.
Administer dynamic application vulnerability scanning using tools such as:
White Hat Sentinel, IBM AppScan, HP WebInspect, or Cenzic Hailstorm,
integrated with F5 BigIP ASM. Administer static application vulnerability
scanning using tools, including: Fortify, Checkmarx, and Veracode. Build
test environments to enable effective security testing. Prioritize
testing to ensure appropriate test coverage on high-risk deliverables.
Coordinate independent Penetration Tests executed by external security
professionals. Mentor QA engineers on application security testing techniques.
Document all test findings and calculate risks associated with
vulnerabilities. Develop training and procedural documentation to increase
security awareness among all Product Development and Information Security
team members. Review user stories to ensure that appropriate
application security information is provided. Propose standards and methods
to improve the security testing processes. Review feature-related security
test cases to ensure consistent application security testing. Perform
manual testing of Hybrid Mobile applications using HTML5/PhoneGap. Interface
with product managers and lead developers to coordinate testing activities
and prepare and deliver related reports to executives. Requirements: Master's degree in Computer Science,
Electrical Engineering, Information Security or related field (willing to
accept foreign education equivalent) plus 1 year of experience
performing web and mobile application security for Payroll, Human Resources, and
Benefits applications. Experience must include: Demonstrated expertise
(DE) utilizing Burp Suite, SQLMap, Padbuster and Python testing
tools; DE performing security assessments and penetration testing on
cloud-based, multi-tenant Software-as-a-Service (SaaS) applications running
on .NET, including developing Python scripts for automated tests and
related .NET code analysis; DE performing Web Application Security and
Penetration Testing in accordance with OWASP standards using manual
techniques and automation tools; DE creating and analyzing code in ASP.NET/C#,
Python, SQL scripts, and web code (HTML, CSS and JavaScript). Submit resume
to Heather Gajowski at HR@paylocity.com. Reference Position Number:
GCRJ
Keywords: Paylocity Corporation, Chicago , Senior Penetration Tester, , Arlington Heights, IL], Illinois
Click
here to apply!
|