Penetration Tester – Application
at Mnemonic
0255, Frogner, Norway -
| Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
|---|---|---|---|---|---|---|---|
| Immediate | 07 Jul, 2024 | Not Specified | 08 Apr, 2024 | N/A | Good communication skills | No | No |
Required Visa Status:
| Citizen | GC |
| US Citizen | Student Visa |
| H1B | CPT |
| OPT | H4 Spouse of H1B |
| GC Green Card |
Employment Type:
| Full Time | Part Time |
| Permanent | Independent - 1099 |
| Contract – W2 | C2H Independent |
| C2H W2 | Contract – Corp 2 Corp |
| Contract to Hire – Corp 2 Corp |
Description:
Do you want to become a trusted advisor within the security profession?
Location
Oslo & Utrecht
Job type
Full time
Deadline
Continuous submission
We are looking for experienced candidates who combine technical expertise and academic dedication with business understanding and communication skills. You have worked for a while with security or within related disciplines, and want to develop your professional profile further and become a trusted advisor within the security profession.
Maybe you have already worked with security for a number of years? You can also be a developer who is passionate about creating more secure solutions and building your own testing tools, a sysadmin with experience from complex IT environments, a technical architect who has worked with security in major development projects, or a security analyst that solves “Capture the Flag” competitions as a hobby. Anyways, you understand how technology works, you pick things apart and put them back together afterwards, and work hands-on to solve demanding problems in creative ways.
About mnemonic
mnemonic responds to the region’s most serious cyberattacks. We work side by side with Europe’s most important organisations and critical infrastructure to protect them from the cyberattacks they see today, and what they can expect to see tomorrow.
At more than 350 employees, we are amongst the largest pure play security companies in Europe, and continue to grow rapidly in Norway and internationally. In addition, we are continually ranked by Great Place to Work as one of Norway’s and Europe’s top workplaces.
You will be working with
You will get the opportunity to work with a wide range of tasks, for example:
- Perform vulnerability analyses and penetration tests of web applications, API and mobile apps.
- Perform code revision and analyse code for zero-days.
- Establish processes and create technical tools for secure development and DevSecOps.
- Establish processes and create technical tools for security testing and handling vulnerabilities.
- Be a part of the development team as a “Security Champion”.
- Give advice on security architecture and solution design.
- Assist in procurement processes and outsourcing.
- Assist with the establishment of cloud solutions and migration, and establish routines for secure operation.
- Establish and development internal test and automation tools.
What you will bring
We are looking for someone that:
- Has completed higher technical education, preferably within security or related disciplines.
- Has minimum three years of experience within development, testing/security testing.
- Has relevant certifications from infosec and pentesting.
- Enjoys working hands-on with technology, picking things apart to understand how they work.
- Has experience with security related work within agile development, DevOps/DevSecOps, Cloud, microservices, serverless computing, automation, and relevant technologies.
- Works structurally and independently, and takes responsibility for his or her own deliveries.
- Has knowledge about frameworks related to secure development, like Microsoft SDL and BSIMM.
- Wants to further develop their security skills and become an expert in his or her field.
- Has the ability to clearly communicate complex technical information, verbally and in writing.
- Has good communication skills in English, both verbally and written.
- Is eligible for security clearance in Norway.
- Has consultancy experience.
If you have many of the qualifications we ask for, but feel that our current vacancies are too specific, you are welcome to submit an open application.
Relevant certifications
- Offensive Security Certified Professional (OSCP)
- GIAC Web Application Penetration Tester (GWAPT)
- Certified Cloud Security Professional (CCSP), Certificate of Cloud Security Knowledge (CCSK)
- General project and method certifications (ITIL, ISTQB, PRINCE2, Scrum, etc).
Responsibilities:
- Perform vulnerability analyses and penetration tests of web applications, API and mobile apps.
- Perform code revision and analyse code for zero-days.
- Establish processes and create technical tools for secure development and DevSecOps.
- Establish processes and create technical tools for security testing and handling vulnerabilities.
- Be a part of the development team as a “Security Champion”.
- Give advice on security architecture and solution design.
- Assist in procurement processes and outsourcing.
- Assist with the establishment of cloud solutions and migration, and establish routines for secure operation.
- Establish and development internal test and automation tools
REQUIREMENT SUMMARY
Min:N/AMax:5.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
Software Testing
Graduate
Proficient
1
0255, Norway
