Verizon Principal Application Penetration Tester in Irving, Texas

What you’ll be doing...

Join our Information Security Team where you will lead the Runtime Application Self-Protection (RASP) program and serve as an expert in identifying exploitable vulnerabilities in applications before hackers are able to discover and exploit them.

You will drive architecture, design and implement Application Security Testing tools, software and methodologies. You will partner with various cross functional team members to formulate strategies and priorities related to Dynamic Application Security Testing (DAST). You will also drive innovation through tool evaluation and recommendations for Application Security Testing initiatives. You will define and continually adapt Application Security Testing methodologies and documentation. You will plan and conduct Web, Web Services and Mobile Penetration Application Testing.

  • Leading and coordinating all activities related to the Runtime Application Self-Protection (RASP) program including vendor relationship, training and documentation.

  • Analyzing RASP policies and configurations specifically related to enterprise implementation and evaluating compliance with regulations and organizational directives.

  • Performing technical and nontechnical risk and vulnerability assessments of relevant technology focus areas and preparing reports with recommended remediation strategies/solutions.

  • Making recommendations regarding the selection of cost-effective security controls to be implemented beyond RASP mitigation

  • Reviewing and performing social engineering tests where appropriate

  • Evaluating, selecting and designing a range of penetration testing tools.

  • Keeping up to date with the latest testing and ethical hacking methods

  • Performing risk analysis (e.g., threat, vulnerability, and probability of occurrence) on new applications or whenever an application or system undergoes a major change.

  • Using threat modeling tools to determine major risks associated with applications

  • Recommending fixes for existing products to bring the application into compliance.

  • Recommending new requirements for applications to ensure compliance to NIST CSF.

What we’re looking for...

You’ll need to have:

  • Bachelor’s degree or four or more years of work experience.

  • Six or more years of relevant work experience.

  • Information security experience.

  • Experience as an Application Penetration Tester.

  • Experience conducting vulnerability scans and recognizing vulnerabilities in security systems.

Even better if you have:

  • Master’s degree.

  • Certified Information Systems Security Professional (CISSP).

  • Experience integrating black box security testing tools into quality assurance process of software releases.

  • Knowledge of enterprise information security architecture, cybersecurity and privacy principles and methods that apply to software development and organizational requirements.

  • Knowledge of web services (e.g., service-oriented architecture, Simple Object Access Protocol, and web service description language).

  • Knowledge of system and application security threats and vulnerabilities and secure configuration management techniques, software debugging principles, software design tools, methods, techniques, and software development models.

  • Knowledge of interpreted and compiled computer languages.

  • Knowledge of critical infrastructure systems with information communication technology that were designed without system security considerations.

  • Experience developing and applying security system access controls.

  • Experience in discerning the protection needs (i.e., security controls) of information systems and networks.

  • Experience in secure test plan design (e. g. unit, integration, system, and acceptance).

22CyberOPS

When you join Verizon...

You’ll be doing work that matters alongside other talented people, transforming the way people, businesses and things connect with each other. Beyond powering America’s fastest and most reliable network, we’re leading the way in broadband, cloud and security solutions, Internet of Things and innovating in areas such as, video entertainment. Of course, we will offer you great pay and benefits, but we’re about more than that. Verizon is a place where you can craft your own path to greatness. Whether you think in code, words, pictures or numbers, find your future at Verizon.

Equal Employment Opportunity

We're proud to be an equal opportunity employer- and celebrate our employees' differences, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or Veteran status. Different makes us better.

REQNUMBER: 487805-1A