Sr. Security Consultant -- Penetration Testing

  • Location:
    New York, NY, US
  • Additional Location(s)
    Chicago, Ill.
  • Area of Interest
    Professional Services
  • Job Type
  • Technology Interest
  • Job Id
Sr. Security Consultant -- Penetration Testing

Cisco Advisory Security Services is at the forefront of securing today's emerging technologies. Consulting activities include analyzing, evaluating, and assessing client web applications, COTS applications, and proprietary and custom applications. Candidate must be capable of analyzing, dissecting, and attacking custom built applications and sites for defects as well as root cause correlation to Secure Application Development Lifecycle improvement.

Basic Function

Perform whitebox (source-based) application security assessments
Perform blackbox application security assessments
Perform application security architecture and risk assessments
Perform secure development lifecycle (SDL) process assessments
Report to clients and assist in remediation of findings from assessments
Develop application security standards and policy documentation
Develop and lead of application security training
Assist clients in developing of application security solutions
Assist in sales, scoping, and marketing of application security engagements
Development of consulting methodologies and process

Required Qualifications

Minimum of 7 years of professional experience in computer security or software development
Experience researching, developing, and applying new technologies and methodologies
Experience with cloud and virtualization environments
Experience with mobile applications and devices
Exceptional communication skills, both oral and written.
Intermediate administration skills for Windows and/or Unix systems
Intermediate TCP/IP networking knowledge (including networking architecture, firewall configuration, and DMZ layout)
Advanced Web technology knowledge (i.e., HTTP, HTML, SQL)
Advanced knowledge of the detection, exploit, and prevention of software vulnerabilities (i.e., SQL Injection, XSS, buffer overflows)
Excellent self-tasking skills
Professional certification strongly encouraged
IoT, Vehicle Security Testing, Medical Device Testing, Cellular Network Testing

About Cisco
The Internet of Everything is a phenomenon driving new opportunities for Cisco and it's transforming our customers' businesses worldwide. We are pioneers and have been since the early days of connectivity. Today, we are building teams that are expanding our technology solutions in the mobile, cloud, security, IT, and big data spaces, including software and consulting services. As Cisco delivers the network that powers the Internet, we are connecting the unconnected. Imagine creating unprecedented disruption. Your revolutionary ideas will impact everything from retail, healthcare, and entertainment, to public and private sectors, and far beyond. Collaborate with like-minded innovators in a fun and flexible culture that has earned Cisco global recognition as a Great Place To Work. With roughly 10 billion connected things in the world now and over 50 billion estimated in the future, your career has exponential possibilities at Cisco.

Keywords: Senior Security Consultant - Strategy, Risk Management, and Compliance


Apply on the Company Site