Summary

Essential Functions

• Understand the cybersecurity threat landscape and how that applies to customer organizations.
• Perform Vulnerability Assessments using industry standard tools and techniques that align with industry best practices (CIS, NIST, etc.).
• Ability to perform network, wireless, and web application penetration testing for customer environments.
• Produce high quality documentation as part of customer engagements
• Evaluates and recommends near- and long-term security program needs that align with the customers risk tolerance.
• Creates and maintains documentation as it relates to the customer’s security program
• Conducts research on security products, services, known vulnerabilities and standards to remain abreast of developments in the cybersecurity landscape.
• Continuous education on current Tools, Techniques, & Procedures (TTP) employed by adversaries.
• Educate and train staff on information system security best practices, security topics, and customer briefings.

Required Qualifications

• GPEN (GIAC Certified Penetration Tester) Certification and/or Offensive Security Certified Professional (OSCP)
• Advanced Web Application Penetration Testing OWASP (Open Web Application Security Project) Certification and/or formal training recommended.
• 2 or more years hands on experience performing vulnerability or penetration testing
• Understands network, operating system, application, and IT operations principals.
• Active engagement in continuing education and professional development.
• Understanding of Web Applications within On-Premises and Public Cloud environments
• Must possess excellent oral and written communication skills in English
• Ability to demonstrate high standards of conduct and ethics as well as appropriate judgment, independence, and discretion
• Ability to work in a team setting and collaborate within a cross functional team.
• Strong analytical, interpersonal, and relationship building skills
• Strong work ethic and personal drive to excel
• Strong sense of urgency and commitment to get the job done
• Ability to use (and learn new) complex systems, technologies, and applications
• Ability to adapt to change quickly and multi-task

Desired/Preferred Qualifications

• One or more vendor certifications for enterprise level security platforms such as CCNA, CCNP, CCIE in Security, Microsoft Azure, AWS, or other leading platform.
• One of more security certifications such as CISSP, GIAC, OSCP, CRISC, or related certifications.

Physical Environment
Physical demands described here are representative of those that must be met by a team member to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job.

Other Duties/Changes
This job description is not designed to cover or contain a comprehensive listing of all duties, responsibilities or activities that are required of a team member for this job. Duties, responsibilities and activities may change at any time with or without notice. At any point in time, the essential functions and primary duties associated with this position will be the principal, major or most important duties, responsibilities and activities that the employee is expected to perform as determined and directed by ConvergeOne.