Scalence L.L.C. · 11 hours ago
Senior Application & Infrastructure Security Penetration Tester
New York, NY, NY
Full-time
Onsite
Senior Level
6+ years expScalence L.L.C. is seeking a Senior Application & Infrastructure Security Penetration Tester to perform routine penetration testing of BNP Paribas systems. The role involves identifying vulnerabilities, ensuring compliance with security policies, and providing consultative guidance to clients on security findings.
Information Technology & Services
No H1B
Responsibilities
Infrastructure Application Penetration Testing resources to perform routine penetration testing of BNP Paribas systems to identify vulnerabilities and ensure compliance with regulators as well as internal information security policy
Assisting in technical scoping of security testing activities
Curation and assessment of vulnerability data (across multiple platforms/tools) from a manual penetration perspective, to focus on true exploitation
Conducting focused research when not deployed on an active project
Provide consultative guidance to customers on findings identified in a clear and actionable fashion both in writing and verbally
Architecture Security Analyzing and Threat Modeling as required
Curation and assessment of vulnerability data (across multiple platforms/tools) from a code assessment perspective, to ensure false positive review and analysis to provide target results to customers
Provide technical guidance in supporting member firms in conducting necessary remedial actions and responding to client vulnerability questions or disclosures
Help develop tooling deployment and relevant scanning configurations to enhance practical testing processes
Escalates key risks and issues to the relevant Regional Operations Manager which need special attention or hold urgency
Operate in the wider organization to drive risk reduction goals and in the continuous improvement vulnerability related services
As needed to meet customer requests support code assessment and network infrastructure
Software/Web Application/Web Services penetration testing
Network Penetration Testing
Mobile Application Penetration Testing
Thick Client Penetration Testing
Knows scripting language
Review test cases from time to time
Automated tools like Burp Suite
Qualification
Required
Minimum Experience – 6 to 8 years
Must Have Experience in Vulnerability Assessment and Penetration Testing
Must Have 4 to 7 years in Infra & Data Security : Cyber security - MSS - Vulnerability Management
Assisting in technical scoping of security testing activities
Curation and assessment of vulnerability data (across multiple platforms/tools) from a manual penetration perspective, to focus on true exploitation
Conducting focused research when not deployed on an active project
Provide consultative guidance to customers on findings identified in a clear and actionable fashion both in writing and verbally
Architecture Security Analyzing and Threat Modeling as required
Curation and assessment of vulnerability data (across multiple platforms/tools) from a code assessment perspective, to ensure false positive review and analysis to provide target results to customers
Provide technical guidance in supporting member firms in conducting necessary remedial actions and responding to client vulnerability questions or disclosures
Help develop tooling deployment and relevant scanning configurations to enhance practical testing processes
Escalates key risks and issues to the relevant Regional Operations Manager which need special attention or hold urgency
Operate in the wider organization to drive risk reduction goals and in the continuous improvement vulnerability related services
As needed to meet customer requests support code assessment and network infrastructure
Software/Web Application/Web Services penetration testing
network Penetration Testing
Mobile Application Penetration Testing
Thick Client Penetration Testing
Knows scripting language
Review test cases from time to time
Automated tools like Burp Suite
Preferred
CISSP, OSCP/CPT/CEPT/ CMWAPT
Company
Scalence L.L.C.
In today’s dynamic and competitive market, success hinges on mastering three key areas: Data Intelligence, Business Resilience, and Digital Experience.
501-1000 employees
Funding
Current Stage
Late StageCompany data provided by crunchbase