Role: Application Security Engineer
Location: 100% Remote
Type: Contract
RESPONSIBILITIES:
- Perform internal penetration tests of bank networks enumerate networks, identify vulnerabilities misconfigurations, create reports based on findings, and deliver reports to stake-holders management.
- Perform external penetration tests of bank networks perform reconnaissance, enumerate intern et-facing client systems services, identify vulnerabilities misconfigurations, create reports based on findings, and deliver reports to stake-holders management.
- Responsible for creating and maintaining a vulnerability management program that will ensure the timely identification, reporting and remediation of operating system and application vulnerabilities.
- Perform application penetration tests of bank applications perform reconnaissance, enumerate internet-facing client application, identi fy vulnerabilities and misconfigurations, create reports based on findings, and deliver reports to stake-holders management
- Perform Breach and Attack Simulations.
- Administer testing platform and work with vendor to ensure proper configurations features are enabled and working as expected.
- Perform firewall reviews of bank firewalls other perimeter security devices, and create reports based on findings.
- Research and develop skills personally and share insights with the team.
- Align with security operations center (SOC) regarding external threats to the bank.
- Educate various teams on the threat actor tactics and techniques, and guide IT teams to improve security controls to mature our defense in depth security posture.
- Responsible for managing and developing a team of employees including training, development, performance management, administration, and workforce planning.
- Regular reporting of team and project activities to executive leadership.