Senior Penetration Tester

ING Bank

The person hired for this role will have expertise in security analyzing and testing of business applications with a security management cycle in industry leading bank. The role is part of a IT security Team and Primary focus of this role would be to perform hands on penetration testing of some of the most critical applications.
- Bachelor’s Degree from an accredited institution
- Manage the writing of test plans and document results and reports
- Manage reconnaissance and discovery to map targets
- Research tools and security exploits
- Ability to interact with team members and cross functional teams;
- Assessment tools, technologies and methods. 
- Understanding of SDLC processes
- Understanding of OWASP and other software security best practices
- 5+ years of experience in the field or in a related area.
- Fluent in English
 

İŞ TANIMI

Skills:
- Experience with Whitebox and BlackBox  penetration testing of applications
- Experience of Mobile application penetration testing (Windows, IOS, Android)
- Commercial and open source security tools (e.g., Nessus, Nmap, Metasploit, Web Inspect, Wireshark, Kali Linux, Burp Suite, etc.)
- Networking principles
- Firewalls, IPsec and SSL VPNs, IDS/IPS
- Experience with Programming and Scripting language (VB, PowerShell,Perl, Python, PHP, C#, javascript, C++ etc.)
- Understanding of Web APIs: SOAP (XML) and REST based
- Experience with stress tests on application, DDOS tests and tools
 - Great communication skills;
- Full-stack knowledge of web and network applications.Continuous integration, static analysis with Fortify and/or dynamic scanning tools (WebInspect, Appscan)
 
 Preferred
- Security and IT certifications (e.g., CISSP, OSCP, GPEN, GWAPT, CISA)