RaleighRecruiter
the smart solution for Raleigh jobs

Ethical Hacker/Pen Tester

Company: Lenovo
Location: Raleigh
Posted on: January 16, 2019

Job Description:

Position Description

The Lenovo PC & Smart Devices security team is growing, and is looking for an experienced cybersecurity professional to fill the role of Product Security Ethical Hacker. In this role you will perform penetration testing to help identify vulnerabilities in Lenovo's products, concentrating on web-based applications and cloud infrastructure, as well as mobile applications.

Experience in performing vulnerability assessments and ethical hacking of web and mobile applications is required. A background in software development is strongly desired.

Primary responsibilities: This role will require knowledge of application security testing (ethical hacking), secure software and infrastructure design practices, and broad knowledge of application and network vulnerabilities and how to exploit them. Generating reports, communicating with development teams and proposing remediation of issues are key components of the role.

Job responsibilities will include ownership and execution of activities, which include:



  • Conducting security assessments of applications using industry-standard tools and techniques to identify vulnerabilities.
  • Risk-ranking of identified threats to prioritize mitigation and remediation activities.
  • Analyzing and assisting in the secure design and architecture of applications and network infrastructure.
  • Working with software designers, developers, project managers, DevOps, and testers, to review, assist and recommend changes and solutions to address the security of cloud-based and mobile solutions.
  • Analyzing source code for Web and mobile applications for security vulnerabilities.
  • Providing vulnerability assessment and penetration test reports to key stakeholders.
  • Producing reports to demonstrate assessment coverage and remediation effectiveness, and working with the product engineers and software teams to ensure corrective actions are implementedPosition Requirements


    Basic Requirements:



    • Bachelor's Degree in Computer Science, related area or equivalent related work experience
    • 5+ years of experience in cybersecurity, ethical hacking, vulnerability identification and management, secure design practices


      Preferred Requirements:



      • Experience performing security assessments of Web and mobile applications.
      • Experience performing penetration testing that identifies weaknesses in Web applications and supporting infrastructure, including servers, databases, networks, etc.
      • Experience performing code reviews and reviewing the results of static analysis tools.
      • Experience with network assessment tools such as Nessus, nmap, curl, netcat, etc.
      • Experience with security testing environments and tools, such as Kali, Metasploit, Burp Suite, Wireshark, Fiddler, etc.
      • An understanding of vulnerabilities and attack methods, such as remote code execution, privilege escalation, XXE, XSS, SQLi, MitM, session hijacking, CSRF, and other common vulnerabilities, how to test for and identify them, and how to remediate them.
      • Knowledge of and experience with applying Common Weakness Enumeration (CWE), Common Vulnerability Scoring System (CVSS), Common Vulnerabilities and Exposures (CVE) and Open Web Application Security Project (OWASP) processes and remediation recommendations.
      • Knowledge of security-related technologies, including but not limited to


        encryption (both at-rest and in-transit) and related cryptography, and authentication services.



        • Knowledge of secure coding best practices.
        • A background in software development in Java, C# .NET and/or JavaScript is strongly desired.

          We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.



          Lenovo

          Keywords: Lenovo, Raleigh , Ethical Hacker/Pen Tester, IT / Software / Systems , Raleigh, North Carolina

          Click here to apply!

          Didn't find what you're looking for? Search again!

          I'm looking for
          in category
          within


Other IT / Software / Systems Jobs


Current College Students - Part-Time Remote Backend Developers
Description: Candidate will be responsible
Company: BrawtaSports Network
Location: Durham
Posted on: 01/17/2019

Software Engineer
Description: CRUCIBLE SR. SOFTWARE ENGINEER br br There are 3 openings. These are contract to hire and salary depends on experience. br br Crucible is an engineering team designed to rapidly deliver high quality (more...)
Company: Digital Intelligence Systems, LLC
Location: Durham
Posted on: 01/17/2019

Sr Software Engineer
Description: Sr Software Engineer Description We are looking for a Senior Software Engineer Core Systems to join our All Flash Array and Hyper-Converged Infrastructure storage development team to lead a team developing (more...)
Company: Horizontal Integration
Location: Durham
Posted on: 01/17/2019


Senior Systems Engineer
Description: Company Description Global Bankers Insurance Group, LLC ldquoGlobal Bankersrdquo represents and manages a consortium of rapidly growing life and annuity insurance and reinsurance companies. We have (more...)
Company: Eli Global LLC
Location: Durham
Posted on: 01/17/2019

SQL Server / Oracle DBA
Description: br The Database Administrator DBA role is responsible for the support, development, and implementation of the underlying databases for business systems and internet applications. xA0 Programming (more...)
Company: Job Juncture
Location: Greensboro
Posted on: 01/17/2019

Full Stack Java Developer
Description: Hi,Greetings to you from Intellisoft Technologies Inc. Founded in 1996 with offices in Dallas and Memphis in USA, India,
Company: Intellisoft Technologies
Location: Durham
Posted on: 01/17/2019

Technical Solutions Architect - Senior Endpoint Security Engineer (TS/SCI required)
Description: World Wide Technology, Inc. has an opportunity available for a Technical Solutions Architect focused on Endpoint Security Engineering in support of an NETCOM initiative out of Ft. Bragg. This is a highly (more...)
Company: World Wide Technology
Location: Raleigh
Posted on: 01/17/2019

Web Application Developer (Front-End)
Description: Piper Enterprise Solutions is seeking a Front-End Developer for a growing software development company in the Raleigh-Durham, North Carolina
Company: Piper Companies
Location: Cary
Posted on: 01/17/2019

Cyber Security Risk Assessor: New and Emerging Technology # 123848
Description: We Offer The CISO team is part of the first line of defense within Credit Suisse, whose mission is to ensure IT control objectives are set, effectiveness is measured, and residual risks are handled. You (more...)
Company: Credit Suisse -
Location: Raleigh
Posted on: 01/17/2019

Reports Developer
Description: DataStaff is currently seeking to fill a 12 month position for a Reports Developer with one of our direct clients in Durham, NC RTP area . The Client seeks a contractor to assist with the design and (more...)
Company: DataStaff, Inc.
Location: Durham
Posted on: 01/17/2019

Log In or Create An Account

Get the latest North Carolina jobs by following @recnetNC on Twitter!

Raleigh RSS job feeds