Title: Associate Security Consultant - NetSPI University
Location: Portland, OR
NetSPI is a dynamic cyber security company headquartered in Minneapolis. We are the global leader in proactive security, delivering the most comprehensive suite of penetration testing, attack surface management, and breach and attack simulation solutions. Our global cybersecurity experts are committed to securing the world's most prominent organizations, including nine of the top 10 U.S. banks, four of the top five leading cloud providers, four of the five largest healthcare companies, three FAANG companies, seven of the top 10 U.S. retailers & e-commerce companies, and many of the Fortune 500.
NetSPI is constantly growing and looking for innovative minds to join us in helping some of the largest organizations in the world protect their technology and data from cyber criminals. We are on an exciting journey to redefine the proactive security market with a platform driven approach that will address our customers' most pressing security challenges. If you thrive in a collaborative setting and enjoy working with best-in-class technology - we want to meet you!
Join the mission as an Associate Security Consultant! You will gain hands-on penetration testing experience with commonly used tools, software, and processes along with learning NetSPI's testing methodology. You will be provided with opportunities to work on web application client projects to acquire the skills and knowledge that allow for promotion to Security Consultant.
*This position will be onsite in Portland starting in June 2024. We are open to considering candidates that require a remote working environment but will be prioritizing applicants that can be onsite.*
Responsibilities during the training program:
- Complete the learning objectives of the web application penetration testing training curriculum
- Demonstrate the ability to articulate, document, and exploit common web application vulnerabilities
- Become proficient in the execution of NetSPI's testing tools & processes
- Improve oral and written skills as it pertains to technical web application testing
- Receive support and oversight from senior colleagues to demonstrate readiness for solo execution
Responsibilities following the training program:
- Execute web application penetration tests
- Create and deliver penetration test reports to clients
- Collaborate with clients to create remediation strategies that will help improve their security posture
Other important tasks you'll partake in post training:
- Research and develop innovative techniques, tools, and methodologies for penetration testing services
- Help define and document internal, technical, and service processes and procedures
- Contribute to the community through the development of tools, presentations, white papers, and blogs
Minimum Qualifications:
- Bachelors or Master's degree in IT, Computer Science, Engineering, Math or similar disciplines (must be completed within 6 months of start date)
- Previous internships in IT or IT Security
- Familiarity with offensive toolkits used for network and application penetration testing
- Familiarity with common web application vulnerabilities and their remediations
- Knowledge of common IT systems (e.g., Windows, Linux) and basic administration skills
- Highly self-motivated and takes initiative to enhance or improve processes, procedures, and solutions
- Curious minded with a hunger to learn
- Strong communication and writing skills
- Ability to creatively solve problems and effectively communicate the problem solving process
Preferred Qualifications:
- Programming experience in one or more of the following languages: Ruby, Python, Perl, C, C++, Java, and C#
- Previous experience in IT, Cybersecurity, or pentesting fields
- Knowledge of network protocols and design
|