Ethical Hacking Analyst

Back to job search
  • Location:

    Addison

  • Job type:

    Contract

  • Job ref:

    349793

  • Published:

    10 days ago

  • Expiration date:

    12/17/2021

  • Start date:

    ASAP

Job Summary:

Signature Consultants is seeking a Ethical Hacking Analyst for an opportunity with a client located in Addison, TX. Our client is looking for the ideal candidate to join a dynamic team of world class security experts to conduct application security/penetration tests of our internal/external web, mobile and web service applications, leveraging both manual techniques as well as automated tools in order to uncover and report security vulnerabilities that exist.

Responsibilities:

  • Meeting with clients to discuss the security system currently in place
  • Researching the company's system, network structure, and possible penetration sites
  • Conducting multiple penetration tests on the system
  • Identifying and recording security flaws and breaches
  • Identifying areas of high-level security
  • Reviewing and rating the security network
  • Creating suggestions for security upgrades
  • Compiling penetration test reports for the client
  • Conducting penetration tests once new security features have been implemented
  • Suggesting alternate upgrades

Required Skills:

  • BS/MS in Computer Science (or relevant work experience in a large scale IT environment)
  • Experience conducting vulnerability assessments, code reviews and penetration tests against web/mobile application technologies, services, platforms and languages to find flaws and exploits (e.g. SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery, Clickjacking, Authentication/Authorization, Privilege Escalation, Business Logic Bypass, OWASP Top 10, SANS Top 25 etc)
  • Knowledge of network and Web related protocols/technologies
  • Ability to demonstrate manual web application testing experience
  • Experience with web application vulnerability scanning tools (e.g. IBM AppScan, HP Webinspect, Acunetix, NTO Spider, Burpsuite Pro etc.)
  • Experience with vulnerability assessment tools and penetration testing techniques (e.g. web application proxies, packet capture analysis software, browser extensions, advanced penetration testing Linux distributions, static source code analyzers, SoapUI etc.)
  • Experience of penetration testing on mobile platforms such as iOS, Android, Windows and RIM.
  • Solid programming/debugging skills with proficiency in one or more of the following: Java, JavaScript, HTML, XML, PHP, ASP.NET, AJAX, JSON, Objective-C.
  • Expert-level experience and very details technical knowledge in at least 3 of the following areas: general information security; security engineering; application architecture; authentication and security protocols; application session management; applied cryptography; common communication protocols; mobile frameworks, single sign-on technologies; exploit automation platforms; RESTful web services
  • Demonstrated ability to learn and apply critical thinking to a variety of situations
  • One or more of the following certifications: CISSO, GWAPT, CEH, OSCP (or qualified work experience)
  • Strong scripting skills (e.g. Python, Perl, Shell script, JavaScript
  • Experience as a developer
  • Mobile programming abilities such as Xcode, Objective-C
  • Knowledge of a Structured Query Language


Top Skills Required:

  • Expertise in full stack pen testing (Outside-In)
  • Knowledgeable leveraging Open Source Intel to aid in uncovering security vulnerabilities
  • OSCP or comparable work history/experience
  • Experience in data mining a plus

About Signature Consultants, LLC

Headquartered in Fort Lauderdale, Florida, Signature Consultants was established in 1997 with a singular focus: to provide clients and consultants with superior staffing solutions. For the ninth consecutive year, Signature was voted as one of the "Best Staffing Firms to Work For" and is now the 14th largest IT staffing firm in the United States (source: Staffing Industry Analysts). With 28 locations throughout North America, Signature annually deploys thousands of consultants to support, run, and manage their clients' technology needs. Signature offers IT staffing, consulting, managed solutions, and direct placement services. For more information on the company, please visit www.sigconsult.com. Signature Consultants is the parent company to Hunter Hollis and Madison Gunn.

EEO Employer

Signature Consultants is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Signature will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at or 888.838.1020.