Application Offensive Security Consultant - Temp to Perm - Jersey City
$124,800 - $135,200/Yr
Waterfall Technology Consulting Partners - Jersey City, NJ
posted 20 days ago
Full-time - Mid Level
Jersey City, NJ
About the position
The Application Offensive Security Consultant will be a key member of the Application Security team, focusing on offensive security assessments for applications as part of the Technology Risk initiative. This role involves providing technical direction, conducting security assessments, and ensuring that security best practices are implemented in various projects. The position is temp-to-perm, requiring three days a week onsite in Jersey City, NJ.
Responsibilities
- Perform red teaming against applications and APIs.
- Conduct application threat hunting to evaluate risk to applications.
- Execute manual (non-automated) security testing of applications.
- Provide vulnerability information in a predefined report format after testing using manual methodologies and tools.
- Generate reports on assessment findings and summarize to facilitate remediation, documenting technical issues identified during security assessments.
- Act as a subject matter expert and respond to security engineering questions/requests related to Application Defense enhancements.
- Collaborate with Security Architects, Product Managers, Risk Managers, and other teams to deliver high-quality products.
Requirements
- Minimum of 6 years of related experience in application security testing.
- Bachelor's Degree and/or equivalent experience.
- Minimum of 4 years of experience in conducting red teaming engagements.
- Minimum of 4 years of experience with application security testing tools such as Burp Suite Professional and OWASP Zap.
- Ability to test manually and utilize live off the land strategies.
- Ability to explain vulnerabilities and weaknesses in OWASP Top 10 and SANS Top 25 to any audience and discuss effective defensive techniques.
- Understanding of the MITRE Framework and adversarial methodologies.
- Ability to bypass controls and/or test countermeasures for misconfigurations.
- Ability to work under pressure, multitask, and be flexible.
- Certified in OSCP, GWAPT, or related offensive security/red teaming certification.
Benefits
- Competitive hourly rate of $60 - $65 an hour.
- Opportunity for temp-to-hire position.
