Application Penetration Testing Specialist

This is a remote opportnity that can be hired in NC, AZ, and TX. 

This position ensures the technological and digital security of the Bank. The tester will identify exposure to cyber threats, security risks, and unauthorized access and assist with mitigation guidance. The tester will assess organizational networks, applications, or systems for potential vulnerabilities. The tester will maintain knowledge of industry practices, technology, and evolving threats to enhance defenses for the Bank's information systems and resources.

The Pentester must be able to plan, coordinate, communicate, track, and conduct penetration testing assessments on the organization’s applications, aid in the coordination of additional testing through third-party vendors, and may lead other associates in the work group acting as lead tester. The selected candidate is welcome to work remotely and/or from a corporate office location.

• Plan and conduct application penetration tests of complex computer systems from a remote testing location
• Coordinate third-party vendor testing
• Analyze and document test results in the format and level of detail dictated by current procedures
• Can convey highly technical information in a manner that can be understood and appreciated by Application Owners and other stakeholders
• Track vulnerabilities and metrics
• Coordinate multiple projects/assignments simultaneously and accurately, and deliver results in a timely manner
• Stay current on new tools, TTPs, vulnerabilities, and emerging threats
• Aid in defining and documenting Pentest Processes

Bachelor's Degree and 4 years of experience in Systems Engineering, Network, or Information Security OR High School Diploma or GED and 8 years of experience in Systems Engineering, Network, or Information Security

Preferred Qualifications:

• Bachelor's Degree and 4 or more years of experience in systems engineering, network security, or information security OR High School Diploma or GED and 6 years of experience in application penetration testing, systems engineering, network security, or information security
• Expertise in application penetration testing techniques with and without scanners
• Demonstrated expertise in:
  • Testing web applications and databases
  • System development life cycle
  • Network administration
  • Cloud penetration testing
  • Linux and Windows
  • Kali Linux tools, Burp Suite, and other pentest tools
  • Experience with pentesting frameworks such as OWASP and PTES
  • Jira and Confluence
  • Analysis and development of professional reports
  • Knowledge of the Secure System Development Lifecycle
• Demonstrated ability to effectively balance and manage multiple priorities
• Proficiency in Microsoft Word, Excel, PowerPoint and Outlook
• Preferred but not required: OSWE, GPEN, GWAPT, or other equal certifications

Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at https://jobs.firstcitizens.com/benefits.