Penetration Tester

Your role

Do you have experience in performing penetration testing? Do you like to test complex applications and find ways around security controls? Do you have proven ability to report and to provide guidance for software teams to remediate vulnerabilities?

We're looking for a penetration tester:

perform manual penetration testing against web, thick-client and mobile applications and manual penetration testing against critical infrastructure (e.g. Active Directory, LDAP)
identify and report vulnerabilities using common methodologies and have extensive knowledge of OWASP
communicate with application teams on how to remediate certain vulnerabilities
have knowledge of a variety of technologies and tools, such as Burp Suite, DAST, Azure cloud,
participate in process improvements and automation
perform technical QAs, including false-positive analysis and risk rating reviews

Your team

You will be part of the Application Security Testing team, which operates across multiple regions and supports the Application Security Framework. This role is essential to our Technology Services, particularly in the area of Application Security Testing.

Diversity helps us grow, together. That's why we are committed to fostering and advancing diversity, equity, and inclusion. It strengthens our business and brings value to our clients.

Your expertise

ideally, 5+ years of hands-on experience in penetration testing web, thick-client and mobile applications
hands-on experience with testing critical infrastructure such as AD, LDAP, DNS, etc.
proficient with Microsoft o365 suite - specifically focused on PowerPoint, Excel, Outlook, etc.
demonstrates exceptional attention to detail and possesses strong problem-solving skills
track record of explaining technical issues to application teams and assisting them in resolving issues
great communicator that can explain technology to non-technical audiences
ability to properly document vulnerabilities and to produce penetration test report
ideally certifications in cyber security area, such as OSWE, OSCP, CompTIA Security+, Burp Suite Certified Practitioner

"At UBS, we appreciate our Veterans and are committed to providing opportunities in Financial Services."

*LI-UBS
*UBS-MOGUL

About us

UBS is a leading and truly global wealth manager and the leading universal bank in Switzerland. We also provide diversified asset management solutions and focused investment banking capabilities. Headquartered in Zurich, Switzerland, UBS is present in more than 50 markets around the globe.
We know that great work is never done alone. That's why we place collaboration at the heart of everything we do. Because together, we're more than ourselves. Want to find out more? Visit ubs.com/careers.

Join us

At UBS, we know that it's our people, with their diverse skills, experiences and backgrounds, who drive our ongoing success. We're dedicated to our craft and passionate about putting our people first, with new challenges, a supportive team, opportunities to grow and flexible working options when possible. Our inclusive culture brings out the best in our employees, wherever they are on their career journey. And we use artificial intelligence (AI) to work smarter and more efficiently. We also recognize that great work is never done alone. That's why collaboration is at the heart of everything we do. Because together, we're more than ourselves.
We're committed to disability inclusion and if you need reasonable accommodation/adjustments throughout our recruitment process, you can always contact us.