Penetration Tester / Security Analyst
ILLUMANT is a leading security assessment and penetration testing firm that empowers it’s clients to defend themselves against security breaches through assessment, penetration testing, and compliance. Our clients include Fortune 500 companies, startups, universities, hospitals, cities, and more.
We get to run real-world cyber-attacks against our clients, hack their applications, systems and networks and propagate attacks internally to take over and “pwn” their infrastructure, expose weaknesses and provide remediation advice so they can repel future attacks.
Illumant is seeking a “l33t” penetration tester and information security analyst to work with us on exciting assessments and penetration testing projects, as well as vulnerability research. The role is challenging and includes the opportunity to work in all areas of security assessments. These include: black box penetration tests, red-team exercises, web application testing, networking device audits, wireless analysis, physical security, APT simulations, mobile app assessments, code review etc. All of our security assessments require the ability to understand current security vulnerabilities, exploitation techniques, web application infrastructure, software development best practices, and the secure configuration of devices and software.
As part of your job you will work in the following areas:
- Perform penetration testing (“ethical hacking”) and source code review assessments against custom built software applications
- Run network security vulnerability assessment tools on Internet facing systems
- Perform manual testing to uncover issues that automated scanners miss
- Exploit vulnerabilities to gain access, escalate privileges, and pivot to other systems within networks
- Document technical issues identified during security assessments
- Communicate assessment results and recommendations to clients
- Research cutting edge security topics and new attack vectors
Knowledge, Skills, and Attributes (Many of the below should apply to a well-qualified applicate):
- Experience working with information security and IT
- Experience in web application testing and/or development
- An aptitude for web application technologies
- Strong analytical and problem solving skills
- Excellent presentation and writing skills
- The ability to work independently as well as in a small team environment
- The ability to manage time constraints across multiple simultaneous projects
- Familiarity with general application and network security concepts
- Computer Science, Information Systems, Engineering or a related major
- Development experience in C/C++, C#, VB.NET, ASP, PHP, Python, or Java
- Proficiency with security tools: Burp Suite/ZAP, Nessus, Metasploit, Kali, etc.
Requirements:
- Currently resident within the US, and not requiring work permit sponsorship
- A high degree of discretion with regards to commercially sensitive information
- OSCP certified, or working toward OSCP certification, is a big plus
Benefits:
- Competitive salary
- Open to remote work
- Flexible hours
- Downtown Palo Alto office
Job Types: Full-time, Part-time, Contract
Salary: $90,000.00 to $175,000.00 /year
Experience:
- relevant: 1 year (Preferred)
- Penetration Testing: 1 year (Preferred)
Work Location:
Benefits:
- Health insurance
- Paid time off
- Flexible schedule
- Relocation assistance
- Professional development assistance
Company's Facebook page:
- https://www.facebook.com/illumantllc/