Be an early applicantLess than 25 applicants

Company

Original Job Post

RSM US LLP · 5 days ago

Supervisor - Application Penetration Tester - Cyber Testing

Cleveland, OH

Full-time

Hybrid

Senior Level

$92K/yr - $185K/yr

5+ years exp

Wonder how qualified you are to the job?

Maximize your interview chances

AccountingConsulting

Growth Opportunities

Insider Connection @RSM US LLP

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Supervise and lead security assessments, including static and dynamic application security testing

Conduct manual penetration testing on web applications, network devices, and other systems

Collaborate with clients in a fast-paced environment across many technology stacks and services, including cloud platforms and development technologies

Develop, enhance, and interpret security standards and guidance

Demonstrate and promote security best practices, including secure development and cloud security

Assist with the development of remediation recommendations for identified findings

Identify and clearly articulate (written and verbal) findings to senior management and clients

Help identify improvement opportunities for assigned clients

Stay up-to-date with the latest security trends, technologies, and best practices

Lead and foster teamwork and open communication to deliver successful outcomes

Supervise, mentor, and manage the engagement of other staff working on assigned engagements

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Web securityComprehensive of vulnerabilitiesEffective exploitation+ years of in code reviewApplication security testingWeb application developmentProficient programming skills e.g. JavaProficient programming skills PythonProficient programming skills RubyProficient programming skills JavaScriptWith cloud platforms such as AWS cloud security bestDevelopment like DockerCDKTerraformJavaPythonReactGraphQLJSONRESTTechnical background in application developmentNetworking/system administrationSecurity testingWith both static application security testing (SAST)Dynamic application security testing (DAST) using various toolsWrittenVerbal communication skillsMust possess a high degree of integrityConfidentiality

Required

BS in Computer Science, Engineering, or related field or equivalent work experience

Advanced expertise in web security, with comprehensive knowledge of vulnerabilities and effective exploitation techniques

5+ years of experience in code review, application security testing, or web application development

Excellent written and verbal communication skills

Proficient programming skills (e.g. Java, Python, Ruby, JavaScript)

Experience with cloud platforms, such as AWS, and knowledge of cloud security best practices

Familiarity with development technologies like Docker, CDK, Terraform, Java, Python, React, GraphQL, JSON, REST, etc.

Must possess a high degree of integrity and confidentiality, as well as the ability to adhere to both company policies and best practices

Technical background in application development, networking/system administration, security testing, or related fields

Experience with both static application security testing (SAST) and dynamic application security testing (DAST) using various tools and techniques

Preferred

One or more relevant certifications such as Offensive Security Web Assessor (OSWA), Offensive Security Web Expert (OSWE), Offensive Security Certified Professional (OSCP), Burp Suite Certified Practitioner, or AWS Certified Security Specialist