Get a Quote

Pen Tester

We are looking for a Senior Pen Test Engineer!

Job Description

You will be a Senior member of the Penetration Testing team, and will be responsible for testing all of TSL customer-facing products, and helping mature the offensive security program at TSL. This role involves crafting attack plans, carrying out pen test engagements, and writing up reports for development teams with detailed descriptions of findings and recommendations. You’ll also consult with members of the Product Security team to provide insight into vulnerabilities and appropriate security controls to build as well as secure development practices. 

Challenges in this role include: understanding the diverse TSL product portfolio, risk-based prioritization, ensuring penetration testing coverage, remediation guidance, secure design pattern consulting, incident response guidance, and bug bounty decisions.

Requirements

  • 7-9+ years of demonstrated ability in application level penetration testing
  • Strong understanding of vulnerabilities, common attack vectors and how to resolve them
  • Ability to quickly comprehend and digest application/systems designs
  • Attacker mindset: ability to think creatively about relevant threats and attacks
  • Ability to prioritize and lead others in a pentest through an attack plan on complex application and systems designs
  • Well-rounded background in application, network, and system security
  • Familiarity with public cloud platforms (preferably AWS and GCP)
  • Effective written and verbal communication

Ideal Candidate

  • Have significant hands on penetration testing experience and offensive capabilities in numerous core competency areas including web applications, mobile applications, networks, Multi Tier architecture or Distributed Systems
  • Have a mature understanding of coverage and risk as a outcome of pentesting as it relates to product security posture and business needs
  • Track and research the latest developments in vulnerability research
  • Have the ability to develop or adapt custom tooling to solve new needs
  • Ability to teach and provide feedback to coworkers
  • Ability to be accountable for internal programs related to the work area.
  • Have the ability to build relationships with engineering teams to drive TSL products to a mature security state

Rewards

This role is eligible for a competitive benefits package which includes medical, dental, vision, a 401(k) plan and match, paid time off, an ESPP and much more! 

Application