Responsibilities:
- Perform manual penetration tests of network services, network infrastructure, IoT devices, and software
- Clearly document and communicate findings and remediation recommendations to leadership and device/software owners
- Partner with the Security Operations Center (SOC) to operationalize new detection concepts
- Conduct vulnerability research and participate in exploit development
- Collaborate and assist with threat hunting activities
- Support Risk Assessments, Third Party Penetration Tests, Vulnerability Assessments, Incident Response and Investigation, and Cybercrime Response
- On-site Attendance
Experience:
- 3-5 years of experience in Information Security in roles of increasing responsibility, resulting in strong familiarity with security concepts and disciplines
- Extensive experience with offensive security tools, concepts and procedures
- Strong ability to understand security concepts and effectively communicate with an Information Security team, IT Operations team, and Application Development team, including all domains of information security
- Highly ethical with excellent written communication skills, along with outstanding analytic, problem solving and decision making skills
- Four year degree in a relevant field preferred or an equivalent amount of post-secondary education and experience (Preferred)
- GPEN, eCPPT, OSCP or other pertinent industry-recognized certifications (Preferred)
- Experience in the mortgage or financial services industry (Preferred)