RSM US

Offensive Security - Penetration Tester

RSM US$62K — $99K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • BS in Computer Science or related field, or equivalent experience
  • Expert in web security with knowledge of vulnerabilities
  • 3+ years in code review or application security
  • Strong written and verbal communication skills
  • Proficient in scripting languages like Python, Ruby, or Perl
  • Experience with cloud platforms such as AWS and cloud security
  • Familiarity with development technologies including Docker, Java, and React

Responsibilities

  • Perform security assessments using SAST and DAST
  • Conduct manual penetration testing on various systems
  • Collaborate with clients on diverse technology stacks
  • Develop and interpret security standards and guidelines
  • Promote best practices in secure development and cloud security
  • Provide remediation recommendations for security findings
  • Articulate findings to senior management and clients
  • Identify improvement opportunities for clients
  • Stay updated on security trends and technologies
  • Supervise and manage engagement for team members

Benefits

  • Flexible work schedules to balance work and life demands
  • Comprehensive benefits package including health and wellness programs
  • Opportunities for professional growth and development
  • Inclusive workplace culture that values diversity
  • Commitment to equal opportunity and reasonable accommodation for disabilities
Full Job Description
Responsibilities:

  • Perform security assessments, including static and dynamic application security testing


  • Conduct manual penetration testing on web applications, network devices, and other systems


  • Collaborate with our clients in a fast-paced environment across many technology stacks and services, including cloud platforms and development technologies


  • Develop, enhance, and interpret security standards and guidance


  • Demonstrate and promote security best practices, including secure development and cloud security


  • Assist with the development of remediation recommendations for identified findings


  • Identify and clearly articulate (written and verbal) findings to senior management and clients


  • Help identify improvement opportunities for assigned clients


  • Stay up-to-date with the latest security trends, technologies, and best practices


  • Work effectively within a team, fostering collaboration and open communication to deliver successful outcomes


  • Supervise and provide engagement management for other staff working on assigned engagements


Required Qualifications:

  • BS in Computer Science, Engineering, or related field or equivalent work experience


  • Expert in web security, possessing extensive knowledge of vulnerabilities, along with the ability to identify and exploit them effectively.


  • 3+ years of experience in code review, application security testing, or web application development


  • Excellent written and verbal communication skills


  • Strong scripting skills (e.g. Python, Ruby, Perl)


  • Experience with cloud platforms, such as AWS, and knowledge of cloud security best practices


  • Familiarity with development technologies like Docker, CDK, Terraform, Java, Python, React, GraphQL, Javascript, JSON, REST, etc.


  • Must possess a high degree of integrity and confidentiality, as well as the ability to adhere to both company policies and best practices


  • Technical background in application development, networking/system administration, security testing, or related fields


  • Experience with both static application security testing (SAST) and dynamic application security testing (DAST) using various tools and techniques


Preferred Qualifications:

  • Preferred, but not required - one or more relevant certifications such as Offensive Security Web Assessor (OSWA), Offensive Security Web Expert (OSWE), Offensive Security Certified Professional (OSCP), Burp Suite Certified Practitioner, or AWS Certified Security Specialist.


At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life's demands, while also maintaining your ability to serve clients. Learn more about our total rewards at https://rsmcanada.com/careers/life-at-rsm/rewards-and-benefits.html.

At RSM, an employee's pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range.

Compensation Range: $62,000 - $99,500

Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance.

About RSM US

RSM US is a leading provider of audit, tax, and consulting services to middle market companies in the United States. The company is headquartered in Chicago, Illinois and has more than 90 offices across the country. RSM US is a member of the RSM International network, which is the sixth largest network of independent audit, tax, and consulting firms in the world. The company's services include audit and assurance, tax, consulting, risk advisory, transaction advisory, and wealth management. RSM US serves clients in a variety of industries, including healthcare, financial services, manufacturing, real estate, and technology.
Learn more about RSM US
Size
13,000 employees
Industry

Similar Jobs

More Jobs at RSM US

More Information Technology Jobs

Find similar Offensive Security - Penetration Tester jobs: