This job has expired, please see additional jobs below
Penetration Tester
Regions Financial
Dallas, TX, United States
Job Details - this job has expired, please see similar jobs below
Thank you for your interest in a career at Regions. At Regions, we believe associates deserve more than just a job. We believe in offering performance-driven individuals a place where they can build a career --- a place to expect more opportunities. If you are focused on results, dedicated to quality, strength and integrity, and possess the drive to succeed, then we are your employer of choice.
Regions is dedicated to taking appropriate steps to safeguard and protect private and personally identifiable information you submit. The information that you submit will be collected and reviewed by associates, consultants, and vendors of Regions in order to evaluate your qualifications and experience for job opportunities and will not be used for marketing purposes, sold, or shared outside of Regions unless required by law. Such information will be stored for a set period of time. You may review, modify, or update your information by visiting and logging into the careers section of the system.
Job Description:
At Regions, the Cyber Security Engineer manages the day-to-day maintenance and operation of Information Security Systems to ensure that controls are adequate and effective. This position also analyzes scenarios, provides solutions, and makes recommendations to protect the environment, customers, and employees. May supervise other Cybersecurity Engineers or lead large scale projects.
Primary Responsibilities
• Creates new ways to solve existing production security issues
• Investigates intrusion incidents, conducts forensic investigations, and mounts incident responses
• Evaluates new technologies and processes that enhance security capabilities
• Establishes plans and protocols to protect data and information systems against unauthorized access, modification, and/or destruction
• Delivers technical reports on daily activities
• Analyzes and advises on new security technologies and program conformance
• Maintains knowledge with current emerging technologies and advancements within Information Security
• Takes initiative and responsibility for achieving desired results
• May supervise or lead a small team
This position is exempt from timekeeping requirements under the Fair Labor Standards Act and is not eligible for overtime pay.
Requirements
• High school diploma or GED
• Eleven (11) years' of related post-secondary education and/or experience in Information Security or Information Technology
Preferences
• Bachelor's degree in Computer Science, Management Information Systems, or directly related field
• Relevant security certifications
• Financial services experience
Skills and Competencies
• Strong organizational, research, analytical and/or problem-solving skills to evaluate situations, make recommendations, and take effective action
• Ability to articulate complex technical concepts or scenarios to both technical and non-technical audiences
• Subject Matter Expert (SME) in one or more security domains
Additional Job Description
This position can be 100% remote.
Responsibilities:
•Conduct application and network penetration testing against a wide array of technologies and platforms
•Understand, review, interpret vulnerability assessment and act as security advisor to business unit partners.
•Create detailed penetration testing reports which explain identified technical and logical security findings, describe potential business risks, and present prioritized recommendations•
•Contribute to the ongoing enhancement of the company’s penetration testing assessment capabilities through the development and implementation of improved methodology, processes, infrastructure, tools, and deliverables.
•Collaborate and share knowledge with team members via formal and informal methods on a regular basis.
•Ability to think outside the box and emulate adversarial approaches
Required Experience:
•Strong technical skills: information security, network security, Windows security, UNIX/Linux security, and web application security.
•Knowledge of system and/or web application vulnerabilities and risk assessment methodologies such as Common Vulnerability Scoring System (CVSS) or OWASP Risk Rating Methodology.
•Prior experience with automated tools used to find system and web application vulnerabilities such as Nmap, Nexpose, Nessus, WebInspect, or Fortify as well as manual/penetration testing
Preferred Experience:
•Certified Ethical Hacker (CEH), GIAC Web Application Penetration Tester (GWAPT), GIAC Penetration Tester (GPEN), Offensive Security Certified professional (OSCP), or other related security certifications
•Scripting with python, ruby, PowerShell, bash, or similar languages
•An understanding of mapping and scanning applications and systems, including port scanning, identifying services and configurations, spidering, application flow charting, and session analysis.
Location:
Birmingham, Alabama
EEO/AA/Minorities/Females/Disabled/Veterans