Home > Tampa jobs > Tampa computer/technical

Posted: Wednesday, January 17, 2018 1:33 PM

Job Description:/h3:
Company Summary:
(ISC) and sup2; is an international, nonprofit membership association for information security leaders. Were committed to helping our members learn, grow and thrive by providing world:class certification programs, education and training, and professional development opportunities that inspire a safe and secure cyber world. With more than 130,000 certified members, we empower professionals who touch every aspect of information security.
The Information Security Team is a fun, collaborative, dedicated and fast:paced group thriving in a constantly changing environment and threat landscape. Our top priority is to ensure the security of our organization and promote awareness across the organization.
Summary Description of Position:
Under the direction of the Security Lead, the Offensive Security Engineer will provide technical leadership for developing and maturing our offensive security program and execute tactical, offensive security assessments across our environment and our vendors. The Offensive Security Engineer will work closely with development and release management teams to coordinate penetration testing, and validate, test, and vet both internally and externally developed applications.
Duties and Responsibilities:
As an Offensive Security Engineer, you are responsible for compiling the findings of your testing into formal reports that will be provided to system and application stakeholders, and produce summary reports for the executive team. The Offensive Security Engineer may also be called upon to interact with the various business units and stakeholders during planning, implementation and pre:release to coordinate the timing of assessments and to resolve issues during testing. The Offensive Security Engineer will work with the business to address security concerns and provide remediation options.
As an Offensive Security Engineer, you will need to be comfortable with working in a DevOps environment and must be familiar with testing applications and the underlying infrastructure in a DevOps model. The Offensive Security Engineer must be comfortable with securing cloud:based products in environments such as AWS and Azure. Additionally, this position will provide security risk assessments, create threat models, and assist the Application Security Engineer with formulating automated security testing.
In addition to the described daily duties, the individual will also assist the security engineering team in the management of security technologies administered by the group (e.g. WAF, Firewall, IDS, and SEIM). This would be an as needed function, which is primarily to provide coverage for those duties when individuals on the security engineering team are out of the office for training or vacation. Additionally, the Offensive Security Engineer will be expected to participate in the CSIRT team and act as a Subject Matter Expert when dealing with the continuity of our operations and when dealing with cyber incidents.
* Bachelors degree in computer science, information systems, related engineering field, or will consider relevant work experience
* 5+ years Project Management experience
* 3 + years IT or Engineering work experience
* Knowledge and understanding of at least one computer programming language.
* Knowledge and understanding of at least one
automation/scripting language
* Knowledge and understanding of ethical hacking frameworks and methodologies
* Ability to demonstrate and support the 5 Company Core Values: Integrity, Excellence, Unity, Accountability, Agility
* You are an innovator, who challenges norms and brings new ideas to security testing methods.
* You are a producer, who can meet the challenges of pentesting in a changing threat landscape.
* You are a collaborator, who likes to engage with the team and the industry.
* You are a team player, who will jump in and assist in other s


• Location: Tampa

• Post ID: 45629442 tampa is an interactive computer service that enables access by multiple users and should not be treated as the publisher or speaker of any information provided by another information content provider. © 2018