This job has closed.

RSM US LLP · 22 hours ago

Penetration Tester - Cyber Security Supervisor

Cleveland, OH

Full-time

Hybrid

Senior Level

$95K/yr - $192K/yr

5+ years exp

RSM US LLP is a leading provider of professional services to the middle market globally. They are seeking an experienced application penetration tester to oversee application security testing and train team members, helping clients prevent and respond to security threats.

AccountingConsultingFinancial Services

Growth Opportunities

No H1B

Responsibilities

Supervise and lead security assessments, including static and dynamic application security testing

Conduct manual penetration testing on web applications, network devices, and other systems

Collaborate with our clients in a fast-paced environment across many technology stacks and services, including cloud platforms and development technologies

Develop, enhance, and interpret security standards and guidance

Demonstrate and promote security best practices, including secure development and cloud security

Assist with the development of remediation recommendations for identified findings

Identify and clearly articulate (written and verbal) findings to senior management and clients

Help identify improvement opportunities for assigned clients

Stay up-to-date with the latest security trends, technologies, and best practices

Lead and foster teamwork and open communication to deliver successful outcomes

Supervise, mentor, and manage the engagement of other staff working on assigned engagements

Qualification

Web security expertiseApplication security testingPenetration testingCloud security knowledgeProgramming skillsStaticDynamic testingTechnical backgroundDevelopment technologiesCertifications (preferred)CommunicationTeam leadershipIntegrityConfidentialityMentoring skills

Required

BS in Computer Science, Engineering, or related field or equivalent work experience

Advanced expertise in web security, with comprehensive knowledge of vulnerabilities and effective exploitation techniques

5+ years of experience in code review, application security testing, or web application development

Excellent written and verbal communication skills

Proficient programming skills (e.g. Java, Python, Ruby, JavaScript)

Experience with cloud platforms, such as AWS, and knowledge of cloud security best practices

Familiarity with development technologies like Docker, CDK, Terraform, Java, Python, React, GraphQL, JSON, REST, etc

Must possess a high degree of integrity and confidentiality, as well as the ability to adhere to both company policies and best practices

Technical background in application development, networking/system administration, security testing, or related fields

Experience with both static application security testing (SAST) and dynamic application security testing (DAST) using various tools and techniques

Preferred

one or more relevant certifications such as Offensive Security Web Assessor (OSWA), Offensive Security Web Expert (OSWE), Offensive Security Certified Professional (OSCP), Burp Suite Certified Practitioner, or AWS Certified Security Specialist

Benefits

Flexibility in your schedule

Discretionary bonus based on firm and individual performance

Company

RSM US LLP

Glassdoor3.8

Stay Alert: Avoid Recruitment Scams Across industries, cybercriminals are posing as company recruiters using fake job postings and employment offers to trick people into providing personal information or payment.

Founded in 1926

Chicago, Illinois, USA

10001+ employees