Be an early applicantLess than 25 applicants

Company

PNC · 5 hours ago

Security Analyst - Penetration Tester

Pittsburgh, PA

Full-time

Remote

Mid Level

3+ years exp

Maximize your interview chances

BankingFinance

H1B Sponsor Likely

Insider Connection @PNC

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Conducts and assists with automated and manual security testing of applications to identify and validate vulnerabilities.

Retests previously discovered vulnerabilities to confirm successful remediation.

Develops and maintains documentation such as procedures, assets, communication, etc.

Contribute to the enhancement of the penetration testing program.

Provides technical evaluation and analysis.

Supports activities, process, and tools needed to improve overall security posture of the organization.

Applies security concepts, reviews information, executes defined tasks, analyzes requirements, reviews logs, and creates documentation.

Performs investigation and data loss prevention, data manipulation, and coordination of activities.

Performs actions to address or mitigate risks and vulnerabilities.

Reviews and defines controls.

Advises on more complex security procedures and products for clients, security administrators and network operations.

Participates in enforcement of control security risks and threats; potential of one more controls subject to manager discretion.

Shares knowledge with staff.

Conducts security assessments and other information security routines consistently.

Investigates and recommends corrective actions for data security related to established guidelines.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Penetration TestingVulnerability ScanningOWASP Top 10Mobile TestingWeb Application TestingMobile DevelopmentWeb Application DevelopmentBurp ProxyNessusQualysOffensive Security Certified ExpertOffensive Security Certified ProfessionalOffensive Security Wireless ProfessionalCertified Information Systems Security ProfessionalAccess ControlDisaster Recovery PlanningInformation SecurityNetwork SecurityPhysical SecurityRisk AssessmentsInformation AssuranceSoftware Security AssuranceEffective Communications

Required

General knowledge of concepts such as OWASP Top 10, vulnerability scanning, and penetration testing methodologies.

Experience with automated and manual security testing of applications to identify and validate vulnerabilities.

Experience with retesting previously discovered vulnerabilities to confirm successful remediation.

Ability to develop and maintain documentation such as procedures, assets, communication, etc.

Experience with conducting security assessments and other information security routines consistently.

Ability to investigate and recommend corrective actions for data security related to established guidelines.

3+ years of relevant / direct industry experience.

Bachelor's degree or a comparable combination of education, job specific certification(s), and experience.

Preferred

Mobile testing experience

Web application testing experience

Mobile development experience

Web application development experience

Access Control (AC)

Building Architecture

Customer Solutions

Disaster Recovery Planning

Information Security

Network Security

Physical Security

Risk Assessments

Security Technologies

Analytical Thinking

Effective Communications

Information Assurance

Information Security Management

Information Security Technologies

IT Environment

IT Standards, Procedures & Policies

IT Systems Management

Problem Solving

Software Security Assurance

Offensive Security Certified Expert (OSCE)

Offensive Security Certified Professional (OSCP)

Offensive Security Wireless Professional (OSWP)

Certified Information Systems Security Professional (CISSP)

Familiarity with tools such as Burp Proxy/Man-in-the-Middle (MiTM) Proxy/ZAP proxy/Charles proxy, AppScan, Nessus, Qualys

Benefits

Medical/prescription drug coverage (with a Health Savings Account feature)

Dental and vision options

Employee and spouse/child life insurance

Short and long-term disability protection

401(k) with PNC match

Pension and stock purchase plans

Dependent care reimbursement account

Back-up child/elder care

Adoption, surrogacy, and doula reimbursement

Educational assistance, including select programs fully paid

A robust wellness program with financial incentives

Maternity and/or parental leave

Up to 11 paid holidays each year

8 occasional absence days each year, unless otherwise required by law

Between 15 to 25 vacation days each year, depending on career level and years of service

Company

PNC

Glassdoor

3.6

PNC is a financial service company providing bank deposits products and services to its community.

Founded in 1845

Pittsburgh, Pennsylvania, USA

10,001+ employees

http://www.pnc.com

H1B Sponsorship

PNC has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (2)

2022 (4)

2021 (3)

2020 (7)