Sign In
 [New User? Sign Up]
Mobile Version

Cybersecurity Attack and Penetration Security Tester


Groton, CT
Apply on the Company Site
  • Save Ad
  • Email Friend
  • Print
  • Research Salary

Job Details


The Global Information Security Business Technology (GIS-BT) team delivers three core capabilities for Pfizer. The team secures the most important information assets through world-class protective controls, promotes a cybersecurity ownership culture across the company through targeted awareness education to empower colleagues to make informed risk decisions, and partners with business leaders to enable improved outcomes through the effective application of technologies that simplify user experience and reduce risk.

The Cybersecurity Attack and Penetration Security Tester will perform cybersecurity manual and automated vulnerability assessments for business solutions. The assessments will focus on protecting the company information assets using a threat based approach and recommend risk reduction actions. The analyst will work within a team and directly with business technology application and technology teams.

The position will report to the Global Information Security Assessment Manager and be located in Groton, CT or Collegeville, PA.


+ Leverage industry best practices, perform manual and automated security testing for web and mobile applications, architectures, specialty solutions including internet of things and wearable devices as well as participate in critical asset reviews.

+ Research new security threats, vulnerabilities and exploit techniques to identify new weaknesses and recommend remediation or mitigation.

+ Create scripting code and methodologies for new testing techniques.

+ Recommend continuous improvements to bolster the service and testing techniques.

+ Upgrade, maintain and recommend security tools to support testing.

+ Manage assessments performed and deliver results to customers on time, assist customers with recommendations and retest as needed.

+ Develop communications and present to key shareholders for assessments.


+ BS in Security and Risk Analysis, Information Assurance, and Cybersecurity, or related field.

+ Preferred: Certified Ethical Hacker (CEH) certification or ethical hacking training

+ Entry level experience performing security assessments.

+ Effective oral, written, and interpersonal communications skills are required as well as organizational, planning, and administrative abilities and the ability to coordinate multiple complex projects simultaneously.

+ Entry level understanding of operating systems, network protocols, and applications development.

+ Maintain awareness of industry trends and emerging technologies including web services, mobile, wearables, isolated architectures, databases security, IoT.

+ Maintain awareness of industry frameworks and best practices: Threat Modeling, NIST, OWASP, SANS Security Model

+ Entry level experience with security testing tool, proxies, port scanners, vulnerability scanners, exploit frameworks.

+ Demonstrated commitment to training, self-study and maintaining proficiency in the technical cyber security domain **.**


+ Ability to work with teams independently and in a team-oriented, collaborative environment is critical to delivering timely outcomes.


+ Standard work schedule, 20% domestic travel, and occasional international travel

**EEO & Employment Eligibility**

Pfizer is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status. Pfizer also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as work authorization and employment eligibility verification requirements of the Immigration and Nationality Act and IRCA. Pfizer is an E-Verify employer.

**Sunshine Act**

Pfizer reports payments and other transfers of value to health care providers as required by federal and state transparency laws and implementing regulations. These laws and regulations require Pfizer to provide government agencies with information such as a health care provider's name, address and the type of payments or other value received, generally for public disclosure. Subject to further legal review and statutory or regulatory clarification, which Pfizer intends to pursue, reimbursement of recruiting expenses for licensed physicians may constitute a reportable transfer of value under the federal transparency law commonly known as the Sunshine Act. Therefore, if you are a licensed physician who incurs recruiting expenses as a result of interviewing with Pfizer that we pay or reimburse, your name, address and the amount of payments made currently will be reported to the government. If you have questions regarding this matter, please do not hesitate to contact your Talent Acquisition representative.

**Other Job Details:**

+ **Last Date to Apply for Job: 2/12/2018**

+ Eligible for Employee Referral Bonus

Pfizer is an equal opportunity employer and complies with all applicable equal employment opportunity legislation in each jurisdiction in which it operates.
Apply on the Company Site
Powered ByLogo

Featured Jobs[ View All ]

Featured Employers [ View All ]