Senior Application Penetration Tester 770

Join to apply for the Senior Application Penetration Tester 770 role at TM2 Group, LLC.

At Protegrity, we lead innovation by using AI and
- resistant cryptography to transform data protection across
- native, hybrid,
- premises, and open source environments. We leverage advanced cryptographic methods such as tokenization,
- preserving encryption, and
- resilient techniques to protect sensitive data. As a global leader in data security, our mission is to ensure that data isn’t just valuable but also usable, trusted, and safe.

Position Summary

This role will report to the Director of Information Security and be a key part of Protegrity’s dedication to Information Security. This person will partner with teams across the company to continually review and optimize our security posture while maintaining a focus on the ongoing reliability and stability of our business environment.

Responsibilities

• Perform tests on applications, network devices, and cloud infrastructures.
• Design and conduct simulated social engineering attacks.
• Research and experiment with different types of attacks.
• Develop methodologies for penetration testing.
• Review code for security vulnerabilities.
• Reverse engineer malware or spam.
• Document security and compliance issues.
• Automate common testing techniques to improve efficiency.
• Write technical and executive reports.
• Communicate findings to customers, technical staff and executive leadership.
• Validate security improvements with additional testing.

Qualifications

• Bachelor’s degree in computer science or related fields; applicable specialized training; or equivalent experience.
• 5 or more years of experience in cyber security including 4 years of Application Penetration Testing.
• Knowledge of information security standards, rules and regulations related to information security and data confidentiality, and desktop, server, application, database, network security principles for risk identification and analysis.
• Experience with performing black, white and grey box penetration testing and system exploitation against applications, APIs, Web, Mobile, and Modern Infrastructure (Containers, Microservices, Serverless etc. ).
• Conducting research into
  - world threat actor tactics, techniques, and procedures.
• Development experience using Python, Power
  Shell or Java.
• Experience with conducting penetration and malicious user testing in Cloud environments, including Amazon Web Services (AWS), Azure, and
  - premises systems.
• Solid knowledge and understanding of development life cycle (SSDLC), CI/CD pipelines and Agile methodologies.
• Understanding of common software security issues and remediation techniques (OWASP Top 10, SANS 25, Mitre ATT&CK, etc. )
• Experience with analyzing vulnerabilities and delivering clear and coherent written reporting, identifying application and network risks and providing mitigation recommendations.
• Excellent knowledge of Windows/Linux systems administration and vulnerabilities.
• An organized and
  - oriented cyber security professional able to perform independently as well as part of a team.
• Preferred: Certified Ethical Hacker, or Comp
  TIA Pen
  Test+ Certification.

Benefits & Why Choose Protegrity

• Become a member of a leading Data Protection, Privacy and Security company during one of the best market opportunities to come along in a generation.
• Competitive Compensation/Total Reward Packages that include:
• Paid Time Off (PTO).
• Annual Bonus Incentives.
• Work on global projects with diverse, energetic, team members who respect each other and celebrate differences.
• Talent First Workforce.

EEO & Background Check

We offer a competitive salary and comprehensive benefits with generous vacation and holiday time off. All employees are also provided access to ongoing learning & development. Ensuring a diverse and inclusive workplace is our priority. We are committed to an environment of acceptance where you are free to bring your full self to work. All qualified applicants and current employees will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability or veteran status. Please reference Section 12: Supplemental Notice for Job Applicants in our Privacy Policy to inform you of the categories of personal information that we collect from individuals who inquire about and/or apply to work for Protegrity USA, Inc. , or its parent company, subsidiaries or affiliates, and the purposes for which we use such personal information.