9 month contract | Remote, based in Ireland | Leading multinational client
Role Overview:
As a Senior Penetration Tester, you will play a crucial role in safeguarding our client's Identity products by conducting comprehensive penetration tests to identify and mitigate potential security vulnerabilities.
Day-to-day work consists of picking up a pentest from our internal board and being able to deliver end-to-end security assessments. You will be part of a dynamic team dedicated to maintaining the highest security standards for our products and services.
Responsibilities:
- Lead security assessments and penetration testing efforts for a variety of Identity products
- Develop and execute test plans, scenarios, scripts, or procedures with a focus on uncovering weaknesses and vulnerabilities.
- Analyse, disassemble, and reverse engineer code to discover vulnerabilities and recommend mitigations.
- Document security findings with detailed descriptions, impactful severity, and actionable remediation strategies.
- Collaborate with product development teams to understand system architecture and design to pre-emptively address security concerns.
- Mentor junior team members and contribute to the development of internal penetration testing tools and processes.
- Stay abreast of industry trends, emerging threats, and new tools and technologies in the security space.
Qualifications:
- Bachelor's or master's degree in computer science, Information Security, or a related field.
- Minimum of 5 years of experience in penetration testing or security research.
- Proficiency in programming languages such as Python, Ruby, Java, or C/C++.
- Deep understanding of network protocols, cryptography, web application vulnerabilities, and attack vectors.
- Familiarity with security testing tools such as Metasploit, Burp Suite, OWASP ZAP, and others.
- Strong analytical and problem-solving skills.
- Excellent written and verbal communication skills for reporting and collaborating with various stakeholders.
Preferred Qualifications:
- Industry-recognized certifications such as OSCP, OSCE, GWAPT, or GPEN.
- Prior experience with cloud security and services, particularly Microsoft Azure.
- Knowledge of regulatory compliance standards such as PCI DSS, HIPAA, GDPR, etc.
Morgan McKinley is acting as an Employment Agency and references to pay rates are indicative.
BY APPLYING FOR THIS ROLE YOU ARE AGREEING TO OUR TERMS OF SERVICE WHICH TOGETHER WITH OUR PRIVACY STATEMENT GOVERN YOUR USE OF MORGAN MCKINLEY SERVICES.