Fulltime Penetration Tester openings in Columbus, Ohio on September 13, 2022

Security Engineer – Red Team Penetration Testing – Hiring Immediately at Veeva Systems, Inc.

Location: Columbus

Security Engineer – Red Team Penetration TestingOhio – Columbus /
Quality & Security & Compliance – 230-Support Security Eng /
Full-Time

Veeva [NYSE: VEEV] is the leader in cloud-based software for the global life sciences industry. Committed to innovation, product excellence, and customer success, our customers range from the world’s largest pharmaceutical companies to emerging biotechs. Veeva’s software helps our customers bring medicines and therapies to patients faster.

We are the first public company to become a . As a PBC, we are committed to making the industries we serve more productive, and we are committed to creating high-quality employment opportunities.

Veeva is a company which means that you can choose to work in the environment that works best for you – on any given day. Whether you choose to work remotely from home or work in an office – it’s up to you.

The Role

Veeva’s Security Engineering Team is seeking Red Teamers to help keep Veeva secure and safe from attackers. Our team in Columbus is growing, and we want you to join us!

This role has a broad scope, ranging from attacking Veeva’s AWS services, infrastructure and processes, and products. Discovering weaknesses in Veeva’s architecture. Working with product and platform teams performing penetration tests on new products. Working with third-party testers and researchers to sharpen our detective and preventative capabilities. This role presents an ultimate test of one’s security knowledge and ability, along with the support of a team of highly skilled individuals.

What You’ll Do
• A Red Team Security Engineer at Veeva is expected to be strong in offensive security domains, testing, techniques, and practices. Engineers in this role work closely with application product teams throughout Veeva. Security engineers will provide technical leadership and advice to developers, engineers, and third-party consultants.
• As a Red Team Engineer, you must show exemplary judgment in making informed technical trade-offs of testing, short-term fixes, long-term security gains, and product team development. You must also demonstrate resilience and navigate difficult situations with composure and tact. Above all else, a strong sense of customer obsession is necessary to focus on the ultimate goal of keeping Veeva and its customers secure.
• Participate in Red Team engagements throughout Veeva with few limits and restrictions
• Conduct full-cycle engagements with development teams independently, or as part of a team
• Perform manual examination of Veeva systems, websites, and networks to discover weaknesses
• Thoroughly document exploits, attack chains, and proof of concept scenarios for technical reviews
• Communicate findings and discoveries to prioritize and execute remediation plans
• Coordinate findings and remediation from third-party penetration testers
• Maintain AWS VPC and related testing systems for our internal and third-party testing programs
• Conduct red team, and purple team exercises and coordinate tabletop exercises
• Penetration tests of new products, concepts, and pilot products
• Review Veeva product release notes and select new features to test throughout the year

Requirements
• BS in Computer Science or related field, or equivalent work experience
• 2+ years in an Information Security role, preferably in red teaming, offensive security, penetration testing, reverse engineering, incident response, or vulnerability management
• Advanced knowledge and understanding in various disciplines such as security engineering, system and network security, authentication and security protocols, cryptography, and application security
• Experience with interpreted or compiled languages: Python, Ruby, Perl, PHP, C/C++, Java, C#
• Experience with cloud service providers and their offerings, preferably AWS and its various technologies and APIs
• Mobile testing on Windows, iOS, and Android
• Experience with various testing tools, such as Netspaker, Kali Linux, Metasploit, Nmap, Nessus, Burp Suite, etc.
• Familiar with offensive TTPs (Tactics, Techniques, and Procedures) including post-exploitation and lateral movement
• Experience with Redhat, AWS Linux, AWS Linux 2, Windows Server 2012, 2016 and 2019
• Understanding of one or more standards: OSWAP Top 10, SANS Top 20, NIST 800-53, CIS, CSC, or other security standards

Nice to Have
• Industry penetration certifications such as OSCP, GPEN, GXPN, GWAPT, etc.
• Industry security certifications such as CISSP, CEH, or others
• Experience in conducting social engineering-focused assessments
• Experience in CTF competitions, CVE research, and/or Bug Bounty recognition
• Knowledge of the MITRE ATT&CK Framework
• Experience in Web and Mobile (Android/iOS) based application/service assessment
• Experience in Wireless and Network assessment in enterprise infrastructure
• Experience in reverse engineering and associated tooling such as IDA
• Experience in Advanced Persistent Threat exploits
• Experience with Web Application Firewalls (WAF), IDS/IPS, or other security platforms
• Knowledge of fuzzing, memory corruption, and exploit development
• Knowledge about hardware hacking

#LI-Remote
#BI-Remote

Veeva’s headquarters is located in the San Francisco Bay Area with offices in more than 15 countries around the world.

Veeva is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity or expression, religion, national origin or ancestry, age, disability, marital status, pregnancy, protected veteran status, protected genetic information, political affiliation, or any other characteristics protected by local laws, regulations, or ordinances. If you need assistance or accommodation due to a disability or special need when applying for a role or in our recruitment process, please contact us at talent_accommodations@veeva.com.
Apply Here
For Remote Security Engineer – Red Team Penetration Testing – Hiring Immediately roles, visit Remote Security Engineer – Red Team Penetration Testing – Hiring Immediately Roles

********

Threat & Vulnerability Penetration Testing Consultant-Marketwide at Accenture

Location: Columbus

Location Negotiable

Who We Are

We are a global collective of innovators applying the New every day to improve the way the world works and lives. Help us show the world what’s possible as you partner with clients to unlock hidden value and deliver innovative solutions. Empowered with innovative tools, continuous learning and a global community of diverse talent and perspectives, we drive success in a new business architecture that disrupts conventional practices. Our expertise spans 40+ industries across 120+ countries and impacts millions of lives every day. We turn ideas into reality.

Accenture Security helps organizations prepare, protect, detect, respond and recover along all points of the security lifecycle. Cybersecurity challenges are different for every business in every industry. Leveraging our global resources and advanced technologies, we create integrated, turnkey solutions tailored to our clients’ needs across their entire value chain. Whether we’re defending against known cyberattacks, detecting and responding to the unknown, or running an entire security operations center, we will help companies build cyber resilience to grow with confidence. Our team of the security sector’s brightest people use the coolest tech to out-hack the hackers and help clients build resilience from within. We blend risk strategy, digital identity, cyber defense, application security and managed service solutions to rethink the entire security lifecycle. We are currently looking for professionals for our Advanced Attack & Readiness Operations practice with extensive experience in the following: The Work

Job Description Advanced Attack & Readiness Operations Consultant Security and Risk professionals develop and deliver solutions that protect enterprise systems, applications and data by establishing policies, practices and tools that prevent unauthorized access, use, disclosure, modification or disruption. Advanced Attack & Readiness Operations professionals perform technical security assessments to identify vulnerabilities, misconfigurations and weaknesses that may lead to unauthorized access of IT systems, applications, the data contained within or the corporate network. A professional at this position within Accenture has the following responsibilities: Adapts existing methods and procedures to create possible alternative solutions to moderately complex problems. Understands the strategic direction set by senior management as it relates to team goals. Uses considerable judgment to determine solution and seeks guidance on complex problems. Primary upward interaction is with direct supervisor. Will interact with peers and/or management levels at a client and/or within Accenture. Determines methods and procedures on new assignments with guidance. Decisions often impact the team in which they reside. Manages small teams and/or work efforts (if in an individual contributor role) at a client or within Accenture. Your Role – Delivery of IT Security Engagements – Penetration Testing (e.g., internal, external, wireless, physical, social, etc.) – Web application security assessments (e.g., exploiting web app vulnerabilities such as sql injection, cross-site scripting, parameter manipulation, session hijacking, etc.) – Vulnerability assessments (i.e., network vulnerability scanning) – Technical security assessments (e.g., Windows, UNIX, firewalls, routers, oracle, sql server, etc.) for Accenture’s clients. – Provide oversight for junior TVM testing resources – Work with offshore delivery center testing personnel – Interact with clients at a technical level.

Here’s What You Need
• Minimum of 3 years of IT Security Testing (e.g., penetration testing, web application security assessments, vulnerability assessments and technical security assessments
• Minimum of 3 years of server, application and network security hardening experience (e.g., design, recommend and implement security hardening technical controls)
• Minimum of 3 years of technical writing and report generation
• Bachelor’s Degree or Equivalent Experience that must include minimum 2 years deep penetration testing in employment along with above requirements

Preferred Skills:
• Industry recognized certification in security (e.g., CISSP, CISA, CISM, CEH, etc)
• Linux and Windows operating systems
• Application development experience
• Enterprise IT security risk assessments and related frameworks (e.g., ISO 27000 series, COBIT, IT General Controls, etc.)
• Ability to Collaborate with cross teams and peers on solutions.

As required by the Colorado Equal Pay Transparency Act, Accenture provides a reasonable range of minimum compensation for roles that may be hired in Colorado. Actual compensation is influenced by a wide array of factors including but not limited to skill set, level of experience, and specific office location. For the state of Colorado only, the range of starting pay for this role is $84,300 – $125,000 and information on benefits offered is here.

COVID-19 update:

The safety and well-being of our candidates, our people and their families continues to be a top priority. Until travel restrictions change, interviews will continue to be conducted virtually.

Subject to applicable law, please be aware that Accenture requires all employees to be fully vaccinated as a condition of employment. Accenture will consider requests for accommodation to this vaccination requirement during the recruiting process.

What We Believe

We have an unwavering commitment to diversity with the aim that every one of our people has a full sense of belonging within our organization. As a business imperative, every person at Accenture has the responsibility to create and sustain an inclusive environment.

Inclusion and diversity are fundamental to our culture and core values. Our rich diversity makes us more innovative and more creative, which helps us better serve our clients and our communities. Read more here

Equal Employment Opportunity Statement

Accenture is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation.

All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.

Accenture is committed to providing veteran employment opportunities to our service men and women.

For details, view a copy of the Accenture Equal Opportunity and Affirmative Action Policy Statement.

Requesting An Accommodation

Accenture is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.

If you would like to be considered for employment opportunities with Accenture and have accommodation needs for a disability or religious observance, please call us toll free at 1 (877) 889-9009, send us an email or speak with your recruiter.

Other Employment Statements

Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.

Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.

Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.

The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company’s legal duty to furnish information.
Apply Here
For Remote Threat & Vulnerability Penetration Testing Consultant-Marketwide roles, visit Remote Threat & Vulnerability Penetration Testing Consultant-Marketwide Roles

********

Pentest Engagement and Operations Handler at JPMorgan Chase

Location: Columbus

*Pentest Engagement and Operations Handler:* As a Pentest Engagement and Operations Handler, you will be an integral part of a team that is focused on innovation, analyzing, designing, developing and delivering solutions built to stop adversaries and strengthen our operations. The role involves a high level of stakeholder management and will suit an individual with excellent client facing skills.

An applicant from a security consulting firm or a financial services background would have a distinct advantage Job Description* Working in cybersecurity takes passion for technology, speed, a desire to learn, and vigilance in order to keep every asset safe. The global cyber security assessments team delivers next generation application and infrastructure penetration testing. As part of the team your primary responsibility will be oversee test engagements to successful conclusion.

You’ll work with a range of that stakeholders and levels across all of our lines of business. Your work will ensure stability, capacity, and resiliency of our products. You will be an integral part of a team that is focused on innovation, analyzing, designing, developing and delivering solutions built to stop adversaries and strengthen our operations.

The role involves a high level of stakeholder management and will suit an individual with excellent client facing skills. An applicant from a security consulting firm or a financial services background would have a distinct advantage. The candidate should be able to demonstrate knowledge of general Cybersecurity principles and ideally have a understanding of program and project delivery processes for penetration testing in large scale organizations and be able to provide oversight of this function.

the successful candidate will demonstrate an eagerness to learn, the drive to excel, solid understanding of cybersecurity concepts along with a proven track record for managing and driving business solutions. Experience in overseeing the delivery processes that support penetration testing at scale would be advantageous. Primary.responsibilities* include; + Use in house systems to respond to line of business requests and review information and make informed technical and operational decisions.

+ Anticipate and resolve roadblocks that impact SLA’s . + Build partnerships and interact with third party vendors and co-ordinate with teams based in the US, UK and Singapore. + Communicate with a diverse audiences and message accordingly, including verbal, written and where necessary using presentation techniques + Continuous analysis of processes to identify automation, streamlining and improvement opportunities and accomplish common goals.

+ Assist with providing ad-hoc reports, and understanding of how to present management information. + Audit impacting oversight related to cybersecurity, threat and vulnerabilities management best practice. + Process engineering and re- engineering.

+ Adherence at all times to JPMC company standards, procedures and policies. This role requires a wide variety of strengths and.capabilities*, including: + Draws on experience and judgment to achieve all of the above responsibilities.

+ Proven commercial experience with Microsoft Excel, Visio, Powerpoint is a MUST. + Good understanding of program and project delivery processes for penetration testing in large scale organisations. + Knowledge of operations, risk and controls management processes & principles, + Ability to execute flawlessly, handle multiple projects simultaneously and independently while maintaining a high degree of communication between multiple stakeholders.

+ Proven experience with logistical demand of clients and stakeholders. + Quick learner with a strong work ethic, attention to detail and a self-starter who is creative with a ‘can-do’ attitude. + Team player exhibiting professional maturity, personal integrity, and excellent interpersonal skills.

Working in a large and complex organization, an understanding of how to develop brand awareness and build a network of business contacts to develop stability, capacity and resiliency of our products and emerging industry trends. Preferred Qualifications: + 5+ years experience in operations and/or project management in the Cybersecurity and Information Technology. + Degree in Business Management, or Technology related fields is a plus.

+ Demonstrated understanding of financial sector, or other large organization, security and IT infrastructures. JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world’s most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law.

In accordance with applicable law, we make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as any mental health or physical disability needs. The health and safety of our colleagues, candidates, clients and communities has been a top priority in light of the COVID-19 pandemic. JPMorgan Chase was awarded the “WELL Health-Safety Rating” for all of our 6,200 locations globally based on our operational policies, maintenance protocols, stakeholder engagement and emergency plans to address a post-COVID-19 environment.

As a part of our commitment to health and safety, we have implemented various COVID-related health and safety requirements for our workforce. Employees are expected to follow the Firm’s current COVID-19 or other infectious disease health and safety requirements, including local requirements. Requirements include sharing information including your vaccine card in the firm’s vaccine record tool, and may include mask wearing.

Requirements may change in the future with the evolving public health landscape. JPMorgan Chase will consider accommodation requests as required by applicable law. Equal Opportunity Employer/Disability/Veterans.
Apply Here
For Remote Pentest Engagement and Operations Handler roles, visit Remote Pentest Engagement and Operations Handler Roles

********

Penetration Tester – Location Negotiable at Accenture

Location: Columbus

Accenture is a global collective of innovators whose aim is to improve the way the world works and lives. Empowered with innovative tools, continuous learning and a global community of diverse talent, we drive success in new business architecture that disrupts conventional practices. And we are looking to add an experienced Cybersecurity Penetration Tester to an already outstanding team.

Accenture Security helps organizations prepare, protect, detect, respond to, and recover, at all points of the security lifecycle. We hire the very best security talent and arm them with the coolest tools and latest tech so they can help our clients build resilience as we create integrated, customized turnkey solutions. We blend risk strategy, digital identity, cyber defense, application security and managed service solutions to rethink the entire security lifecycle.

You Are passionate about working for a consultancy at the cutting edge of information security. At Accenture, we pride ourselves on our unique, dynamic, and meticulous approach to penetration testing to ensure our clients get a true picture of their exposure to a wide range of potential threat actors. This provides our clients with actionable intelligence which can be used to significantly reduce the likelihood of a compromise. We empower our consultants to utilize all of their technical ability on engagements, be creative and really get into the mind-set of an attacker in order to find vulnerabilities that others simply can’t.

The Work

A Penetration Tester would be responsible for delivering penetration testing engagements.The work will draw from your knowledge of all layers of the technology stack and the vulnerabilities therein.

You will be working on a diverse range of clients from many industry sectors and will gain unique insight into the inner workings of their critical business functions. Additionally, Penetration Testers at this level can advance their careers through development of important consultative, managerial and leadership skills.

Required
• Minimum 1 years’ experience delivering a broad range of penetration testing services, including proficiency in at least one pentesting discipline (network, application, etc.)
• Minimum 1 years’ experience managing projects through to completion, and dealing with client issues.
• Minimum 6 months exposure to Cloud security including reviewing Cloud configurations and exploiting common Cloud specific security weaknesses.
• Minimum 1 years’ experience writing detailed reports to a high standard and provide technical QA for the work of others

NICE TO HAVE
• Industry specific technical accreditations such as OSCP, OSCE.
• Demonstrable experience in computer science, information security, and coding or systems administration.
• Demonstrated experience in planning, executing and managing Simulated Attack / Red team engagements including techniques described within the MITRE ATT&CK framework.

As required by Colorado law under the Equal Pay for Equal Work Act, Accenture provides a reasonable range of compensation for roles that may be hired in Colorado. Actual compensation is influenced by a wide array of factors including but not limited to skill set, level of experience, and specific office location. For the state of Colorado only, the range of starting pay for this role is $71,172 – $130,700 and information on benefits offered is here.

COVID-19 update:

The safety and well-being of our candidates, our people and their families continues to be a top priority. Until travel restrictions change, interviews will continue to be conducted virtually.

Subject to applicable law, please be aware that Accenture requires all employees to be fully vaccinated as a condition of employment. Accenture will consider requests for accommodation to this vaccination requirement during the recruiting process.

What We Believe

We have an unwavering commitment to diversity with the aim that every one of our people has a full sense of belonging within our organization. As a business imperative, every person at Accenture has the responsibility to create and sustain an inclusive environment.

Inclusion and diversity are fundamental to our culture and core values. Our rich diversity makes us more innovative and more creative, which helps us better serve our clients and our communities. Read more here

Equal Employment Opportunity Statement

Accenture is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation.

All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.

Accenture is committed to providing veteran employment opportunities to our service men and women.

For details, view a copy of the Accenture Equal Opportunity and Affirmative Action Policy Statement.

Requesting An Accommodation

Accenture is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.

If you would like to be considered for employment opportunities with Accenture and have accommodation needs for a disability or religious observance, please call us toll free at 1 (877) 889-9009, send us an email or speak with your recruiter.

Other Employment Statements

Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.

Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.

Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.

The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company’s legal duty to furnish information.
Apply Here
For Remote Penetration Tester – Location Negotiable roles, visit Remote Penetration Tester – Location Negotiable Roles

********

The Tech Career Guru
We will be happy to hear your thoughts

Leave a reply

Tech Jobs Here
Logo