QA Manager
MarketSource Inc.
Security Penetration Tester, BurpSuite, OWASP ZAP
General Dynamics Information Technology
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇺🇸 United States
Visit company websiteSalary
💰 $97,750 - $132,250 per year
Job Level
Mid-LevelSenior
Tech Stack
JavaScriptSQL
About the role
- Conducting security assessments, including vulnerability scanning, penetration testing, and risk analysis using Burp Suite
- Analyzing web applications for common vulnerabilities, such as XSS, SQL injection, CSRF, and others
- Creating detailed reports on findings, including severity ratings, risk analysis, and recommendations for remediation
- Collaborating with developers and IT teams to address identified vulnerabilities and provide guidance on security best practices
- Staying up-to-date with the latest security trends, tools, and vulnerabilities in web applications and network infrastructure
- Assisting in developing and maintaining security documentation and procedures
- Participating in security incident response and investigations as needed
Requirements
- Bachelor’s degree and over 3 years of experience conducting security assessments, including penetration testing and vulnerability scanning
- Must have strong experience using Burp Suite for penetration testing and web application security assessments
- In-depth knowledge of web application vulnerabilities (OWASP Top 10, etc.) and secure coding practices
- Must be able to describe what they are, impacts, and resolutions
- Proficiency in web technologies such as HTML, JavaScript, CSS, and HTTP protocols
- Experience with other security tools (e.g., Nmap, Nessus, Wireshark, etc.) is a plus
- Familiarity with automated testing tools, including Snyk and/or OWASP ZAP (Zed Attack Proxy), and frameworks
- Knowledge of security compliance standards and regulations (e.g., GDPR, OWASP, PCI DSS)
- Strong analytical, problem-solving, and communication skills
- At least one or more of the following active certifications: OSCP, CEH, and/or other similar
- Experience with Agile methodologies and frameworks such as SAFe and Kanban
- Must have ongoing 'Valued' or higher performance ratings
- Candidates must be able to obtain Federal Public Trust clearance
- Candidates must have lived in the United States at least three (3) out of the last five (5) years
Benefits
- Comprehensive benefits and wellness packages
- 401K with company match
- Competitive pay and paid time off
- Full flex work weeks where possible
- Variety of paid time off plans including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave
- GDIT Paid Family Leave program providing up to 160 hours of paid leave in a rolling 12 month period for eligible employees
- Short and long-term disability benefits
- Life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
security assessmentspenetration testingvulnerability scanningrisk analysisweb application vulnerabilitiessecure coding practicesHTMLJavaScriptCSSHTTP protocols
Soft skills
analytical skillsproblem-solving skillscommunication skills
Certifications
OSCPCEH
