Be an early applicantLess than 25 applicants

Company

Netskope · 5 hours ago

Information Security Engineer Lead (Red Team)

St Louis, MO

Full-time

Remote

Senior Level

6+ years exp

Maximize your interview chances

Cloud SecurityCyber Security

Growth Opportunities

H1B Sponsor Likely

Hiring Manager

Scott Cadagan

Insider Connection @Netskope

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Act as a SME for offensive security technical areas

Perform comprehensive security assessment of, but not limited to, web & mobile application, containers, k8s, thick client, cloud environments

Perform triage and implement SAST, DAST and SCA process

Communicate and collaborate with multiple stakeholders like engineering, SRE, QA for security initiatives

Providing assistance in regulatory compliance like FedRAMP and PBMM

Support junior team members in their authoring of reports and issues and help in day-to-day operations

Support and recreate proofs of concept from security reports

Support the PSIRT (Product Security Incident Response Team)

Automate day-to-day red team tasks

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Penetration TestingApplication SecurityRed Team ExperienceWeb Application TestingMobile Application TestingScripting (Python)Burp SuiteMetasploitTenableSQL MapNmapRegulatory Compliance (FedRAMP)Regulatory Compliance (PBMM)OWASP Top 10Cloud Service Providers AWSCloud Service Providers GCPProfessional Certifications CEHProfessional Certifications OSCPProfessional Certifications CISSPOut of the Box Thinking

Required

6+ years of penetration testing, application security, red team experience in highly diversified and high growth organizations.

Understanding of application frameworks and how to approach security as well as security pitfalls with them

Proven expertise & track record in web and mobile application penetration testing (Web, Mobile, API/Web Services) - DAST and SAST

Experience in leading the team of 3-5 members in security testing domain

Should have experience with tools Burp suite professional, Metasploit, Tenable, SQL Map and Nmap

Experience in regulatory compliance like FedRAMP and PBMM

Have experience in developing exploits and tooling from vulnerabilities both pre and post exploitation and lateral movement

In-depth knowledge of OWASP Web and Mobile Top 10 vulnerabilities, identifying, exploiting and remediation of them

Good knowledge of TCP/IP and other application and network level protocols

Be able to author and issue reports on assigned application and system scan

Good exposure to cloud service providers like AWS, GCP and other SaaS applications

Experience in automating security tasks using Python or any other scripting language

Should be able to think 'Out of the box'. Possess ability to think and implement new attack approaches/vectors

Should possess relevant university degree and/or professional qualifications/certification (e.g. CEH, OSCP, CISSP)

Excellent written and verbal communication skills

Self-motivated, curious, knowledgeable pertaining to news and current events

Company

Netskope

Glassdoor

4.5

Netskope is an IT firm that specializes in real-time security, stopping threats, protecting data, and network management services.

Founded in 2012

Santa Clara, California, USA

1,001-5,000 employees

https://www.netskope.com

H1B Sponsorship

Netskope has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2023 (21)

2022 (79)

2021 (121)

2020 (39)