Sr. Offensive Engineer | Web Application Penetration Testing
3 weeks ago
Who is
Trace3 ?
Trace3 is a leading Transformative IT Authority, providing unique technology solutions and consulting services to our clients. Equipped with elite engineering and dynamic innovation, we empower IT executives and their organizations to achieve competitive advantage through a process of Integrate, Automate, Innovate.
Our culture at Trace3 embodies the spirit of a startup with the advantage of a scalable business. Employees can grow their career and have fun while doing it
Trace3 is headquartered in Irvine, California. We employ more than 1000 people all over the United States. Our major field office locations include Atlanta, Denver, Detroit, Indianapolis, Grand Rapids, Lexington, Los Angeles, Louisville, San Diego, San Francisco, and Scottsdale.
Ready to discover the possibilities that live in technology?
Come Join Us
Street-Smart
- Thriving in Dynamic Times
We are flexible and resilient in a fast-changing environment. We continuously innovate and drive constructive change while keeping a focus on the “big picture.” We exercise sound business judgment in making high-quality decisions in a timely and cost-effective manner. We are highly creative and can dig deep within ourselves to find positive solutions to different problems.
Juice - The “Stuff” it takes to be a Needle Mover
We get things done and drive results. We lead without a title, empowering others through a can-do attitude. We look forward to the goal, mentallymapping outevery checkpoint on the pathway to success, and visualizing what the final destination looks and feels like.
Teamwork - Humble, Hungry and Smart
We are humble individuals who understand how our job impacts the company's mission. We treat others with respect, admit mistakes, give credit where it’s due and demonstrate transparency. We “bring the weather” by exhibiting positive leadership and solution-focused thinking. We hug people in their trials, struggles, and failures – not just their success. We appreciate the individuality of the people around us.
About the Role:
The Senior Offensive Security Engineer will lead offensive security campaigns for our clients to improve their ability to protect, detect and respond to known adversaries. This position will reduce cyber risk by uncovering vulnerabilities and weaknesses in our client’s enterprise cyber environment through coordinated ethical hacking and penetration testing scenarios. The Sr. Engineer will work closely with team members to plan, coordinate, execute and report on sophisticated ethical hacking exercises, to identify cyber vulnerabilities and reduce the risk posture of enterprise systems. This role will be primarily responsible for performing application and OS security assessments and will make recommendations on effective countermeasures. A key function of this role will be building deep relationships, gaining trust, and enabling client success.
What You’ll Do:
Performs client penetration testing to find any vulnerabilities or weaknesses that might be exploited by a malicious party, using open-source, custom, and commercial testing tools
Assist in development of internal infrastructure design for research, development, and testing focused on offensive security
Conducts periodic scans of networks to find and detect vulnerabilities
Lead scoping engagements by clearly articulating various penetration approaches and methodologies to audiences ranging from highly technical to executive personnel
Report generation that clearly communicates testing and assessment details, results, and remediation recommendations to clients
Develop scripts, tools, and methodologies to automate and streamline internal processes and engagements
Conduct IT application testing, cybersecurity tool and systems analysis, system and network administration, and systems engineering support for the sustainment of information technology systems (mobile application testing, penetration testing, application, security, and hardware testing)
Conduct cloud penetration testing engagements to assess specific workloads (i.e., AWS, GCP, Azure, containers, or other PaaS and SaaS instances) for vulnerabilities and subsequently attempt to exploit identified weakness after receiving permission from client stakeholders
Provide recommendations to clients on specific security measures to monitor and protect sensitive data and systems from infiltration and cyber-attacks including response and recovery of a data security breach
Maintain a firm grasp on the industry and anticipate trends and movements while balancing maturity and timing
Contribute to Trace3’s presence and brand in the Security community
Qualifications & Interests:
Bachelor’s degree in Engineering in Computer Science or Information Technology or a related technical field; or equivalent related professional experience
OSCP, OSCE, GXPN, PTX, WPTX, or MASPT certification(s) is a huge plus
CISSP, CISM, CEH, or THP certification(s) preferred
Advanced understanding of one or more Unix/Linux/Mac/Windows operating systems
6-8 years' experience in at least three of the following:
Red Team penetration test tools such as Kali, ParrotOS, Bloodhound, MetaSploit, BurpSuite, OWASP Zap, etc
Network penetration testing and manipulation of network infrastructure
Mobile and/or web application assessments
Shell scripting or automation of simple tasks using Perl, Python, Go, Powershell or Ruby
Developing, extending, or modifying exploits, shellcode or exploit tools
Developing applications or scripts in C#, ASP, .NET, ObjectiveC, Go, Java (J2EE), Python, or Ruby
Experience with at least one or more of the major cloud providers (AWS, Azure, and GCP)
Expert knowledge of tools used for wireless, web application, and network security testing
Expert knowledge of current web application structure and strong ability to test both modern and older web applications
Motivated self-starter who loves to solve challenging problems and feels comfortable working directly with customers
Excellent oral, written communication, and presentation skills with an ability to present client security sessions and security workshops to C-Level Executives and non-technical audience
Highly organized, detail-oriented, excellent time management skills, and able to effectively prioritize tasks in a fast-paced, high-volume, and evolving work environment
Ability to approach customer and sales requests with a proactive and consultative manner; listen and understand user requests and needs and effectively deliver
Comfortable managing multiple and changing priorities, and meeting deadlines in an entrepreneurial environment
The Perks:
Comprehensive medical, dental and vision plans for you and your dependents
401(k) Retirement Plan with Employer Match, 529 College Savings Plan, Health Savings Account, Life Insurance, and Long-Term Disability
Competitive Compensation
Training and development programs
Wellness Program
Stocked kitchen with snacks and beverages
Collaborative and cool office culture
Work-life balance and generous paid time off
***To all recruitment agencies: Trace3 does not accept unsolicited agency resumes/CVs. Please do not forward resumes/CVs to our careers email addresses, Trace3 employees or any other company location. Trace3 is not responsible for any fees related to unsolicited resumes/CVs.
#J-18808-Ljbffr
-
Sr. Penetration tester
2 days ago
Dallas, United States SIRA Consulting Inc Full time3097 Sr. Penetration testerDTCCLocation: Tampa or Dallashybrid 3 days a week onsite from day one.Can do boston or McLean but no increased rate Work w existing set of pen testers and do pen testing on APIs and applications 5+ years experience Someone who has GWAPT or OSCP certification! GPEN can work Networking background is not a fit, looking for someone who...
-
Dallas, United States ESR Healthcare Full timeApplication Penetration Test Lead Analyst Tampa or Dallas, TX ref $65 per hour Skills: Application Penetration Testing, Burp Suite and Web Inspect, Dynamic Experience level: Mid-senior Experience required: 5 Years Education level: Bachelor’s degree Job function: Information Technology Industry: Financial Services Pay rate : View hourly payrate Total...
-
Sr. Application Security Pen Tester
2 weeks ago
Dallas, United States Diverse Lynx Full timeSr. Application Security Pen Tester Dallas, TX - Day-1 on-site, Need local profiles. 12 Months Contract Need certified in Pen testing We need someone with OSCP or may be CISSP but someone with CEH certification only is not needed. Do not submit any who only have CEH. Need someone who is good in hacking, need some real ethical hacker. Job Description:...
-
Penetration Tester
1 week ago
Dallas, United States Diverse Lynx Full timeJob Title: Penetration Tester Location: Dallas, TX, United States Minimum Experience: 6-8 years Mandatory Certification: OSCP Preferred Certifications: CISSP, CPT/CEPT/ CMWAPT Responsibilities: • ssist in planning the scope of security testing activities. • nalyze and assess vulnerability data from various platforms and tools to identify real...
-
Systems Engineer
4 days ago
Dallas, United States ShiftCode Analytics Full timeThis will be HYBRID (3 days week), expected to be in the office on Tuesday/Weds/Thursday and remote the other two days. Duration : 12 months NEED DOB ( MM/DD) NEED SSN ( LAST 4 DIGITS ) NEED LINKEDIN NO VIOP OR GOOGLE VOICE NUMBERS PLEASE NEED DL COPY Must haves: * 5-8 years experience they need senior hands on pentester * Experience in testing web-based...
-
Systems Engineer
2 weeks ago
Dallas, United States ShiftCode Analytics Full timeThis will be HYBRID (3 days week), expected to be in the office on Tuesday/Weds/Thursday and remote the other two days. Duration : 12 months NEED DOB ( MM/DD) NEED SSN ( LAST 4 DIGITS ) NEED LINKEDIN NO VIOP OR GOOGLE VOICE NUMBERS PLEASE NEED DL COPY Must haves: * 5-8 years experience they need senior hands on pentester * Experience in testing...
-
Systems Engineer
3 weeks ago
Dallas, United States ShiftCode Analytics Full timeThis will be HYBRID (3 days week), expected to be in the office on Tuesday/Weds/Thursday and remote the other two days. Duration : 12 months NEED DOB ( MM/DD) NEED SSN ( LAST 4 DIGITS ) NEED LINKEDIN NO VIOP OR GOOGLE VOICE NUMBERS PLEASE NEED DL COPY Must haves: * 5-8 years experience they need senior hands on pentester * Experience in testing...
-
Application Security Engineer
4 weeks ago
Dallas, Texas, United States Motion Recruitment Full timeJob Title: Application Security Engineer Location: Remote - Must live in Texas A renowned institution of higher education in the state of Texas, dedicated to academic excellence, research, and innovation. We provide a vibrant and inclusive environment that fosters learning, growth, and collaboration. As part of our commitment to maintaining a secure digital...
-
Web Application Developer
6 days ago
Dallas, United States Bee Talent Solutions Full timeResponsibilities:The candidate will contribute significantly to the software development projects applying expertise in .NET, Python, and web application development, alongside traditional engineering responsibilities, to deliver robust, efficient, and innovative software solutions that align with our engineering objectives.Utilizes software engineering...
-
Web Application Developer
7 days ago
Dallas, United States Bee Talent Solutions Full timeResponsibilities:The candidate will contribute significantly to the software development projects applying expertise in .NET, Python, and web application development, alongside traditional engineering responsibilities, to deliver robust, efficient, and innovative software solutions that align with our engineering objectives.Utilizes software engineering...
-
Web Application Developer
4 days ago
Dallas, United States Bee Talent Solutions Full timeResponsibilities:The candidate will contribute significantly to the software development projects applying expertise in .NET, Python, and web application development, alongside traditional engineering responsibilities, to deliver robust, efficient, and innovative software solutions that align with our engineering objectives.Utilizes software engineering...
-
Web Application Developer
6 days ago
Dallas, United States Bee Talent Solutions Full timeResponsibilities:The candidate will contribute significantly to the software development projects applying expertise in .NET, Python, and web application development, alongside traditional engineering responsibilities, to deliver robust, efficient, and innovative software solutions that align with our engineering objectives.Utilizes software engineering...
-
Application Security Engineer
4 weeks ago
Dallas, United States Motion Recruitment Full timeJob Title: Application Security Engineer Location: Remote - Must live in Texas A renowned institution of higher education in the state of Texas, dedicated to academic excellence, research, and innovation. We provide a vibrant and inclusive environment that fosters learning, growth, and collaboration. As part of our commitment to maintaining a secure digital...
-
Sr. Quality Test Engineer(Remote)
1 month ago
Dallas, Texas, United States Cognizant Technology Solutions Full timeSr. Quality Test Engineer(Remote)This is a remote position open to any qualified applicant in the United StatesCognizant Technology Solutions is seeking a "Sr. Quality Test Engineer"(Remote), to join our team of IT professionals in a permanent role. If you meet our background requirements and skills and are seeking an opportunity with these skills and...
-
Red Team Cyber Security Engineer
1 month ago
Dallas, United States InterEx Group Full timeOne of our key clients within the financial industry is looking for a Red Team Cyber Security Engineer for a full-time position.This position will be 2 days on-site in Chicago or Dallas and 3 days remote. Please note, only US citizens or Green-card holders are eligible for this position.Job Description:Perform cloud assessments, web application penetration...
-
Red Team Cyber Security Engineer
4 weeks ago
Dallas, United States InterEx Group Full timeOne of our key clients within the financial industry is looking for a Red Team Cyber Security Engineer for a full-time position.This position will be 2 days on-site in Chicago or Dallas and 3 days remote. Please note, only US citizens or Green-card holders are eligible for this position.Job Description:Perform cloud assessments, web application penetration...
-
Cyber Security Engineer
2 weeks ago
Dallas, United States Diverse Lynx Full time• Assisting in technical scoping of security testing activities• curation and assessment of vulnerability data (across multiple platforms/tools) from a manual penetration perspective, to focus on true exploitation.• Conducting focused research when not deployed on an active project.• Provide consultative guidance to customers on findings identified...
-
Sr. Software Developer
1 month ago
Dallas, Texas, United States Wipro Limited Full timeSr. Software Developer Bachelor s degree in Computer Science Engineering or related & 2 years experience Analyze requirements prepare functional specification documents high and Low level design documents. Build & deploy web based applications using Core Java J2EE JSP Servlets Struts Spring MVC Spring Boot Spring Batch Hibernate CORBA EJB JMS No SQL Angular...
-
Automation Test Engineer
2 weeks ago
Dallas, United States Diverse Lynx Full timeAutomation Test Engineer Dallas, TX 6-12 months contract with possible extension Technical skills: Selenium with Java, BDD framework (Cucumber), Test Cafe', TestNG, Mobile App Automation, Appium, RestAPI, Jenkins, GIT, Jira Roles & responsibilities: Years related experience in automation testing of Web based application and Mobile Apps using frameworks like...
-
Sr ReactJS Developer
4 weeks ago
Dallas, United States InfoVision Inc. Full timeHi We have an immediate Openings with Our Direct Client for a Long term contract position.Sr ReactJS Developer with Next.js experienceLocation: Dallas TX - OnsiteDuration: 12+ MonthsNEED LOCALResponsibilities:Develop user interfaces for web applications using React.jsBuild reusable components and front-end libraries for future useWork closely with UX/UI...