Sr. Security Consultant – Penetration Testing
What You’ll Do
Cisco Advisory Security Services is at the forefront of securing today's emerging technologies. Consulting activities include analyzing, evaluating, and assessing client web applications, COTS applications, and proprietary and custom applications. Candidate must be capable of analyzing, dissecting, and attacking custom built applications and sites for defects as well as root cause correlation to Secure Application Development Lifecycle improvement.
Who You’ll Work With
When you join our team, you’ll partner closely with the Security and Incident Response Teams, and service practice organizations to apply both Cisco’s dynamic range of capabilities as well as those of our partner organizations to meet customer requirements and exceed their expectations. Partnering with account teams, you’ll drive the business pipeline and consult on services solutions, technologies, and pricing mechanics.
Who You Are
Perform whitebox (source-based) application security assessments
Perform blackbox application security assessments
Perform application security architecture and risk assessments
Perform secure development lifecycle (SDL) process assessments
Report to clients and assist in remediation of findings from assessments
Develop application security standards and policy documentation
Develop and lead of application security training
Assist clients in developing of application security solutions
Assist in sales, scoping, and marketing of application security engagements
Development of consulting methodologies and process
Minimum of 7 years of professional experience in computer security or software development
Experience researching, developing, and applying new technologies and methodologies
Experience with cloud and virtualization environments
Experience with mobile applications and devices
Exceptional communication skills, both oral and written.
Intermediate administration skills for Windows and/or Unix systems
Intermediate TCP/IP networking knowledge (including networking architecture, firewall configuration, and DMZ layout)
Advanced Web technology knowledge (i.e., HTTP, HTML, SQL)
Advanced knowledge of the detection, exploit, and prevention of software vulnerabilities (i.e., SQL Injection, XSS, buffer overflows)
Excellent self-tasking skills
Professional certification strongly encouraged
IoT, Vehicle Security Testing, Medical Device Testing, Cellular Network Testing
We connect everything: people, processes, data, and things. We innovate everywhere, taking bold risks to shape the technologies that give us smart cities, connected cars, and handheld hospitals. And we do it in style with unique personalities who aren’t afraid to change the way the world works, lives, plays and learns. We are thought leaders, tech geeks, pop culture aficionados, and we even have a few purple haired rock stars. We celebrate the creativity and diversity that fuels our innovation. We are dreamers and we are doers.
We Are Cisco.
170 West Tasman Dr. San Jose, CA, 95134