Key Responsibilities Assist to create, leverage automation, continuously develop, maintain and mature Offensive Security Program.
Be a resourceful part of the talented team responsible for application and infrastructure penetration testing, supporting external vulnerability reports and overall vulnerability management.
Perform penetration testing coverage across the global organization. Perform independent manual penetration tests of cloud and global IT infrastructure, web application, APIs, and IOT devices in our warehouse and logistics centers.
Work with external vendors when third party penetration reports are required. Work closely with on- and off-shore testing teams and external vendors (when third party input is required) to test and deliver quality penetration reports.
Provide appropriate knowledge transfer to off-shore testers to assist in testing efforts Review all applicable threats, discover vulnerabilities and collaborate with remediation treatment owners to remediate identified vulnerabilities.
Develop comprehensive, accurate reports and presentations for both technical and executive audiences. Coach and mentor junior engineers in penetration testing techniques.
Ensure knowledge creation around common vulnerabilities within the landscape and corresponding remediation practices. Research the latest security best practices and technologies, staying abreast of new threats and vulnerabilities and helping disseminate this information within the groups at the company.
Utilize penetration testing tools, custom scripts, exploits, related automation, and innovation. Establish priorities over near-to-medium term.
Build processes that speed up the discovery and resolution of findings. Work closely with developers and architects on identifying security issues early in the development cycle.