Description:
• Perform network-based penetration testing on public-facing infrastructure to identify, assess, and report vulnerabilities.
• Conduct penetration testing on internal and external web applications and APIs to identify and report security weaknesses.
• Execute red team exercises to uncover weaknesses in client infrastructure and recommend remediation.
• Write clear, concise deliverable reports that explain client risk posture and ways to reduce it.
• Advise clients on security best practices for application design, infrastructure architecture, and related considerations.
• Collaborate with other Crosslake practitioners to share and promote penetration testing best practices.
• Work with private equity firms and other investment firms to assess technology risks across their environments or portfolios.
• Partner with internal and client technical leads to plan, execute, and complete penetration testing engagements on time.
• Take ownership of engagements after an initial apprenticeship period and drive projects to successful completion.
Requirements:
• Be willing to start as an apprentice tester for the first 2 projects before leading work independently.
• Deliver at least one network, API, or web application penetration test every week.
• Experience producing reports that outline technical vulnerabilities and risk for investors or clients.
• Ability to work collaboratively with internal and client technical leads and team members.
• Ability to plan and execute penetration testing efforts in a timely fashion.
• Strong communication skills for creating high-quality client-facing reports.
• Experience working with private equity companies or other investment firms is preferred.
• US-based remote work from Central US is required.
Apply tot his job
Apply To this Job