Security Specialist / Penetration Tester

Job Title: Security Specialist / Penetration Tester
Contract Type: Contract
Location: Belgium,
Salary: Negotiable
Start Date: asap
Reference: 67012-ITBEL-TOS
Contact Name: Tatiana Ossotchenko
Contact Email:
Job Published: August 22, 2016 11:11

Job Description

"We are looking for a web application penetration testing contractor. This security contractor would have to perform the following tasks:
* Use commercial and open source assessment tools to seek for vulnerabilities and misconfigurations associated with common source codes (Java, C+C++, etc.), common Operating Systems (Windows, Linux, etc.), protocols (HTTP, FTP, etc.), and network security services (PKI, HTTPS, etc.)
* Perform on-going (web) application security testing to improve overall software security
* Develop and/or propose technical solutions to help mitigate security vulnerabilities.
* Conduct research to identify new attack vectors against our products and services.
* Assist our delivery teams with managing and training webapp vulnerabilities

The contractor will have to perform one or more of the underlying security activities:
- (web) app penetration testing,
- secure code reviews,
- security testing,
- forensics analysis

Minimum Requirements
* Understand and be well versed in common Cyber application Threat terminology, web application vulnerability and penetration test principles and methodologies
* Experience with conducting vulnerability assessments.
* Experience creating test plans for web application penetration testing during developmental testing (DT) and, eventually, operational testing (OT).
* Experience executing DT and OT plans to discover in depth vulnerabilities and usable exploitations in an application and/or system.
* Experience producing written reports and briefs on the results of penetration tests.
* Possess understanding of Microsoft Office and various Microsoft/UNIX/LINUX systems.

Preferred Requirements in addition to aforementioned
* Possess a number of technical certifications from the following list:
* Certified Ethical Hacker certification 'CEH)
* Offensive Security Certified Professional (OSCP)
* Web Application Penetration Tester (WAPT)
* GIAC Web Application Penetration Tester (GWAPT)
* GIAC Penetration Tester (GPEN)
* Cisco Certified Network Associate (CCNA)
* Have a working level ability with one of the below programing languages:
- C/C++
- Javascript
- Python"