Cybersecurity Penetration Tester for Reboot ( Women Returnee to Workforce Program)
Brief description of the role:
The role is for penetration tester for the Reboot Hiring Program, who will be involved in pen testing sources, such as Web, API, thick clients, and printer mobile apps/drivers testing and red teaming, join us to embark on a diverse and exciting career path in a dynamic, high-tech environment. Our teams are creative and friendly, providing a wide range of Cybersecurity services at HP.
Education and Experience Required:
We are inviting women currently on a career break, with a minimum of 2 to 3 years of experience in Full Stack Software Development, ASP.NET or J2EE web application development experience, good programming experience in Python, Java, C# and SQL or web/API penetration testing, who are ready to re-enter the workforce.
What a Penetration Tester does at HP:
The role is part of a talented team of security engineers and architects within HP Cybersecurity’s Architecture & Security Engineering team. Our security engineers are responsible for ensuring the security of HP products, solutions, and infrastructure. Our security engineers primarily perform manual testing with the assistance of automated tools to identify a complex set of vulnerabilities across a wide range of products and technologies.
Responsibilities:
Performing manual testing, software composition analysis, and code scanning.
Uses knowledge of the HP environment to scope the extent and impact of any vulnerability, attack, or breach.
Writing detailed security testing reports using state-of-the-art attack methodologies and outcomes.
Web application, API Endpoint, and thick client app, mobile app security testing
Individuals who do well in this role at HP, usually possess:
Ability to manually review code, along with the use of automated testing tools, such as Burp Suite, is essential to locate flaws in pen testing
Search for weaknesses in common software, web applications and proprietary systems
Research, evaluate, document, and discuss findings with Cybersecurity, application, product, and management teams
Establish improvements for existing security services, including hardware, software, policies, and procedures
Advanced understanding of Cybersecurity and IT security risks, threats, and prevention measures
Advanced understanding of relevant programming and scripting languages (Perl, Python, PowerShell, HTML, JavaScript, etc.)
Advanced security system analysis skills
Advanced understanding of security standards and best practices
Advanced understanding of:
Off-the-shelf vulnerability assessment products and tools.
Platform and application-layer penetration testing techniques.
Adversary techniques, tactics, protocols, and related countermeasures.
HP is committed to supporting a smooth transition back to the corporate world through an on-the-job training program in the dynamic field of Cybersecurity Penetration Testing.