Security Penetration Tester (contract) – Truvantis – San Jose, CA

Security Penetration Tester (contract) – Truvantis – San Jose, CA

Truvantis is a Cyber security and IT compliance consulting organization with comprehensive expertise in IT security testing, security compliance and governance program development.  We specialize in helping our customers improve their security programs in practical, effective, and actionable ways.  We are looking to find qualified person(s) to supplement our technical testing staff.  Our immediate need is for contract, part-time resources, however, this could be a full-time position over time.

Apply here:  http://www.truvantis.com/penetration-tester/

Key Responsibilities

  • Perform application and network penetration tests
  • Participate in Security Assessments of networks, systems and applications
  • Deep Network and Application Vulnerability Assessment. Guide security defect resolution by identifying security defects, assisting customers in reproducing defects, recommending remediation and verifying that defects are fixed
  • Build and enhance new security tools, applications and infrastructure
  • Work on security-related problems that require consideration of a wide variety of factors and use initiative and judgment to remediate
  • Lead conversations with customers to support their evaluation of risk and severity of issues
  • Engage with the security community
  • Create high quality reports
  • Some travel may be required

Required Experience & Skills

  • 3 – 8 years’ experience in penetration testing
  • Vulnerability and exploit detection and threat management experience
  • Vulnerability analysis and application reversing skills
  • Expert knowledge of Windows & Linux, TCP/IP, and Web services
  • Understanding of cryptography and ciphers
  • Experience with various security tools and products (Metaspolit, Nmap, Qualys, mimikatz, Nessus, NeXpose, Kali Linux, BurpSuite, OWASP ZAP, WireShark, Tcpdump, etc.)
  • Experience with Python required, experience with lower level languages is desirable
  • Excellent verbal and written communication skills
  • Ability to maintain a trusted role

Other Requirements

  • CEH, OSCP, GIAC (GPEN) or other information security certifications are highly desirable
  • BS or MS degree in Computer Science, or a related field or equivalent experience
  • Must pass a criminal background check
  • Must be authorized to work in the United States