Jobs search

Sr. Penetration Tester (Android)

Worldlink • Mountain View, California, United States • 1w ago

TITLE: Sr. Penetration Tester (Android)

POSITION TYPE: Full Time (W2)

LOCATION: Mountain View, CA

(Candidates located in San Francisco, CA cannot be considered for this position at this time.)

ABOUT WorldLink:

WorldLink is a rapidly growing information technology company at the forefront of the tech transformation. From custom software development to cloud hosting, from big data to cognitive computing, we help companies harness and leverage today’s most cutting-edge digital technologies to create value and grow.

Collaborative. Respectful. Work hard Play hard. A place to dream and do. These are just a few words that describe what life is like at WorldLink. We embrace a culture of experimentation and constantly strive for improvement and learning.

We take pride in our employees and their future with continued growth and career advancement. We put TEAM first. We are a competitive group that like to win. We're grounded by humility and driven by ambition. We're passionate, and we love tough problems and new challenges. You don't hear a lot of "I don't know how" or "I can't" at WorldLink. If you are passionate about what you do and having fun while doing it; tired of rigid and strict work environments and would like to work in a non-bureaucratic startup cultural environment, WorldLink may be the place for you.

For more information about our craft, visit https://worldlink-us.com .

WHO we’re looking for:

We are looking for a Sr. Penetration Tester (Android) who will be responsible for working as part of the Development Quality Innovation (DQI) lab in a dual role. First, to research new automation tools as well as take current tools and refine them to our needs. Second, act as a centralized QI group to provide quality assessment and penetration testing operations.

This duality provides a unique opportunity to explore new concepts in different technologies and perform original research in the quality and security domain.

Role and Responsibilities:

Develop expertise in our product solutions, deep diving into design/architecture, & execute white box and black box penetration scenarios.
Plan, scope and conduct vulnerability assessment/ Penetration test on internal / external facing public assets such as Web application, Android platform, Android Apps, Backend APIs, and Cloud services.
Research & and conduct adversary simulation for known security threats and identify novel attack vectors to test a system’s relative security readiness.
Conduct Threat modelling, Threat Intelligence and scoping with stakeholders.
Assist in creating and maintaining internal penetration testing and practice within QA team, managing vulnerabilities and tracking until closure.
Build Test harness & required Automation suites and validate attack vectors in Threat Lab.
Co-ordinate with program management, security architects at Internal & offshore sites.
Stays up to date on current tools, technologies, and vulnerabilities to incorporate into testing practices.
Research and developing exploits for zero-day vulnerabilities.
Conduct penetration test on IOT and Firmware Devices.

Required Experience and Education:

5+ years’ experience in Penetration testing, including 2+ year experience in Android and 1+ year experience in Web Application.
Degree in Cyber Security or Security relevant disciplines is a plus.
Certifications in offensive security: OSCP or OSWA or OSWE or CRTO or BSCP or similar is a plus.
Comprehensive knowledge in Information Security practices on malware, phishing attacks, attack vectors and methods to protect against threats.
Extensive Knowledge in Java, python or any relevant programming language.
Malware development or reverse engineering experience is a plus.

Necessary Skills and Attributes:

Self-motivated individual with the ability to thrive in a team-based or independent environment.
Detail-oriented with strong organization skills.
Ability to work in a fast-paced environment.
Limited supervision and the exercise of discretion.
Blog post on security research, CVEs, walkthroughs or PoCs on security domain is a plus.

Physical Demands:

The physical demands described here are representative of those that must be met by contract employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

While performing the duties of this job, the contract employee is occasionally required to stand, clean, crawl, kneel, sit, sort, hold, squat, stoop, stand, twist the body, walk, use hands to finger, handle, or feel objects, tools or controls, reach with hands and arms, climb stairs or ladders and scaffolding, talk or hear, and lift up to 20 pounds. Specific vision abilities required by the job include ability to distinguish the nature of objects by using the eye. Operate a computer keyboard and view a video display terminal between 50% - 95% of work time, including prolonged periods of time. Requires considerable (90%+) work utilizing high visual acuity/detail, numeric/character distinction, and moderate hand/finger dexterity.

Performs work under time schedules and stress which are normally periodic or cyclical, including time sensitive deadlines, intellectual challenge, some language barriers, and project management deadlines. May require working additional time beyond normal schedule and periodic travel.

WHAT we’ll bring:

During your interview process, our team can fill you in on all the details of our industry-competitive benefits and career development opportunities. A few highlights include:

Medical Plans
Dental Plans
Vision Plan
Life & Accidental Death & Dismemberment
Short-Term Disability
Long-Term Disability
Critical Illness/ Accident/ Hospital Indemnity/ Identity Theft Protection
401(k)

WHAT you should know:

Our success begins and ends with our people. We embrace diverse perspectives and value unique human experiences. WorldLink is an Equal Employment Opportunity and Affirmative Action employer. All employment at WorldLink is decided on the basis of qualifications, merit, and business need. We endeavor to continue our footprint as a diverse organization by highlighting opportunities for all people. WorldLink considers applicants for all positions without regard to race, color, religion or belief, sex, (including pregnancy and gender identity), age, national origin, political affiliation, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. People with disabilities who need assistance with any part of the application process should contact us.

This job description is designed to cover the main responsibilities and duties of the role but is not designed to be a comprehensive list of all.

Salary/Pay Range: $60.00-$78.00/hr (Depending on experience)