Job Openings

This section contains current job openings and other helpful resources on career advancement for SV-ISSA members and other Bay Area security professionalis.

To post new security job openings and other career centric information in this area please send the title, a short description, and the URL for the detailed description to the chapter webmaster at webmaster@sv-issa.org.

 

Continuous Penetration Testing Analyst at Bishop Fox

https://www.bishopfox.com/careers/?gh_jid=1569330

We are the trusted advisors to the world’s leading businesses, governments, and organizations – helping to secure their networks, data, and applications. Whether they’re looking to safeguard their critical infrastructure or credit cards; social media or mobile games; flight navigation systems or frozen waffle factories — we’re right there, advising every bit of the way.

We are launching a new service line, so we are bringing a few good continuous penetration testing analysts aboard to shore up our team.

Who You Are and What You’ll Do

You fancy yourself a pentester. You know your way around source code. You’ve plundered apps and pillaged networks (legally, of course). You have a passion for hacking and information security. If you’re not already doing it professionally, you’re pen testing in your free time.

As a Bishop Fox continuous penetration testing analyst, you’ll use automation technology along with manual vulnerability analysis to constantly evaluate the security posture of an organization’s entire external perimeter. You’ll work in a small agile team to quickly triage client requests, integrate emerging real-world attack techniques, and constantly improve your capabilities and technology. All the while, you’ll be performing real-time analysis of newly-created or modified assets at scale and providing clients with continuous delivery of your findings.

Why Bishop Fox

We believe that what we do makes an impact, and our culture reflects it in the best possible way. Every one of us plays a role in our success. We value our time and our well-being, we love what we do, and we look out for one another. Bishop Fox offers competitive salaries, flexible schedules, and a one-of-a kind environment. For the right candidate, it will feel like a second home.

Your Education and Experience

You just have to be good at and, most importantly, love what you do. Don’t worry about a piece of paper; we won’t. Here’s a list of qualities we’re looking for, but don’t think that you need them all:

  • Network penetration testing
  • Web application penetration testing
  • Open-source intelligence gathering (OSINT)
  • Scripting/programming skills (e.g., Python, Ruby, Java, JS, etc.)
  • Red teaming
  • Strong communication skills (i.e. written and verbal)
  • Understanding security fundamentals and common vulnerabilities (e.g. OWASP Top Ten)
  • 2 - 5 years of application security experience
  • Additional experience in IT, security engineering, system and network security, authentication and security protocols, and applied cryptography
  • Network and web-related protocol knowledge (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
  • Experience with Agile workflows, such as Kanban, is strongly preferred
  • Advanced relevant academic training is a definite bonus

Candidates across the country are welcome to apply.

Interested? Apply today.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or national origin.

Senior Pentester at Bishop Fox- Remote

https://www.bishopfox.com/careers/?gh_jid=847501

Bishop Fox is a leading security consulting firm serving the Fortune 1000 and high-tech startups. We protect our clients by finding vulnerabilities and building defenses before the attackers can break bad. From critical infrastructure to credit cards; social media to mobile games; flight navigation systems to frozen waffle factories — we’re right there hacking away.

We’re seeking remote senior penetration testers to join our team – and help us build a more secure world.

Who You Are and What You’ll Do

You are a born penetration tester; you see problems (and solutions) in everything. You instinctively know your way around source code. You’ve plundered apps and pillaged networks (legally, of course). You have a passion for hacking that goes beyond a career – it’s a way of life for you. At this point, you may have accumulated a few disclosures, blog posts, or talks under your belt. if given the chance, you could probably Hack the Gibson. 

With Bishop Fox, your responsibilities would include testing smart devices before they hit the market, hacking networks, and reversing software. Some days, you’ll be red teaming wireless networks and participating on social engineering engagements. Other days, you’ll be analyzing source code and building threat models. Every day at Bishop Fox, you’ll be learning.

As a consultant, you’ll solve challenging technical problems and build creative solutions. As a trusted advisor, you’ll provide your expert opinion to help our clients navigate difficult business decisions. And as a senior penetration tester, you’ll lead teams on one-of-a-kind engagements, mentor co-workers, and contribute significantly to the advancement of our consulting practice.

Why Bishop Fox

Bishop Fox offers competitive salary, generous benefits, flexible schedules, and negotiable travel. If you’re looking for opportunities to grow professionally, this is the place. You’ll work alongside some of the most talented and experienced security consultants in the industry.

We have a casual workplace environment, but we‘re consummate professionals.

Your Education and Experience

Our wants are simple: be good at and, most importantly, love what you do. Here’s a list of qualities we’re looking for, but don’t think that you need them all: 

  • Vulnerability assessment
  • Penetration testing and code review
  • Understanding security fundamentals and common vulnerabilities (e.g., OWASP Top Ten)
  • 2 - 5 years of application security experience
  • More than 3 years of security consulting experience
  • Additional experience in IT, security engineering, system and network security, authentication and security protocols, and applied cryptography
  • Scripting/programming skills (e.g., Python, Ruby, Java, JS, etc.)
  • Network and web-related protocol knowledge (e.g., TCP/IP, UP, IPSEC, HTTP, HTTPS, routing protocols)
  • Federal and industry regulations understanding (e.g., PCI, SOX, GLBA, ISO 17799, HIPAA, CA1386)
  • Strong communication skills (i.e., written and verbal)
  • CISSP, OSCP/E, GWAPT, GPEN, or GXPN certifications are helpful, but not a necessity
  • Advanced relevant academic training is a definite bonus
  • The self-discipline to work independently; as a remote worker, the same will be asked of you as all Bishop Fox team members.

Candidates across the country (or even the world) are welcome to apply.

Interested? Drop us a line today.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.