Information Security Consultant (Mobile and Web Application Penetration)

Tevora - Irvine, CA

posted 7 days ago

Full-time - Mid Level
Irvine, CA
Professional, Scientific, and Technical Services

About the position

Tevora is seeking an experienced Information Security Consultant specializing in Mobile and Web Application Penetration Testing. This role involves analyzing and attacking clients' networks, APIs, and web applications to ensure they are secure against the latest threats. The position emphasizes technical proficiency, thought leadership, and continuous education within the cybersecurity field.

Responsibilities

  • Perform application penetration testing, including fuzzing, application logic testing, and source code analysis.
  • Conduct mobile application testing on iOS and Android platforms.
  • Produce high-quality penetration testing reports for client executives and technical personnel.
  • Present the results of penetration testing activities, including an explanation of findings and recommended remediations.
  • Work directly with clients over phone, email, and chat to kickoff projects, answer technical questions, and debrief penetration test findings.
  • Identify and implement improvements to testing processes and methodologies.
  • Perform research and tool development to support and advance Tevora's practice.

Requirements

  • Minimum of 2-3 years of professional experience performing mobile or web application penetration tests or similar technical consulting experience.
  • Proficiency with Burp Suite and/or ZAP.
  • Experience with penetration testing frameworks such as OWASP Testing Guide v4, Web App Hackers Handbook, NIST, or PTES.
  • Knowledge of security engineering basics including system and network security, authentication and security protocols, cryptography, mobile and web application security.
  • Experience using various penetration testing and analysis tools (e.g., IDA, Ghidra, Drozer, Frida, Cycript, NMAP, MobSF, Nessus, Cobalt Strike, Metasploit, Rubeus, BloodHound) on Windows, Linux, iOS, and Android.
  • Knowledge of scripting languages (e.g., Python, Ruby, Perl, Bash, VB/WScript, PowerShell).
  • Programming experience with C++, C, C#, Go, Python, Java, Kotlin, Objective C, Swift, or JavaScript preferred.

Nice-to-haves

  • Hardware hacking experience (JTAG, NAND dumping, finding your way around a board with a multimeter).
  • Industry certifications (e.g., OSCP, OSCE, GWAPT, GPEN, GXPN, OSWE) or Bachelor's Degree in a related field.

Benefits

  • Comprehensive Healthcare Benefits
  • 401k w/ Employer Matching
  • Paid Vacations
  • Paid Holiday
  • Vibrant Work Culture

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service