Senior Security Consultant (Mainframe Penetration Tester)
Role details
Job location
Tech stack
Job description
-
Perform app, platform, CICS, Db2 or other z/OS-based penetration tests.
-
Create and deliver penetration test reports to clients
-
Collaborate with clients to create remediation strategies that will help improve their security posture
-
Research and develop innovative techniques, tools, and methodologies for penetration testing services
-
Participate in the ongoing development/enhancement of NetSPI services and processes, in addition to thought leadership (via blogs, presentations, white papers, webinars, podcast, vlogs and tweets)
-
Provide pre-sales support by assisting with scoping prospective engagements
-
Act as a resource for internal team members as it relates to in-depth technical questions or best practices
-
Responsible for QA activities in assigned service lines
-
Other duties as assigned
Requirements
Do you have experience in Web Application Security Testing?, Join the mission as a Senior Security Consultant. We are seeking a skilled and detail-oriented Penetration Tester to conduct thorough security assessments, identify vulnerabilities, and provide expert recommendations to strengthen our clients' security posture. As a Penetration Tester supporting Mainframe testing, you will work closely with clients to deliver clear, actionable reports and contribute to the development of security best practices., * Bachelor's degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience
-
3-5 years of experience in penetration testing, including network, web or mobile application testing
-
Experience with offensive toolkits used for network and application penetration testing
-
Strong communication skills, both verbal and written
-
Knowledge of z/OS fundamentals including, but not limited to: JCL, JES2, USS, Networking and at least one ESM (RACF, ACF2, Top Secret).
Preferred Qualifications:
-
Programming experience in one or more of the following languages: Assembler, C, C++, REXX
-
Experience security or managing z/OS-based systems.
-
Experience with pentesting (PTAS) or other offensive security certifications.