Sr. Security Consultant -- Penetration Testing

  • Location:
    San Jose, California, US
  • Additional Location(s)
    Anywhere in United States
  • Area of Interest
    Professional Services
  • Job Type
  • Technology Interest
  • Job Id

                    Sr. Security Consultant – Penetration Testing


What You’ll Do

Cisco Advisory Security Services is at the forefront of securing today's emerging technologies. Consulting activities include analyzing, evaluating, and assessing client web applications, COTS applications, and proprietary and custom applications. Candidate must be capable of analyzing, dissecting, and attacking custom built applications and sites for defects as well as root cause correlation to Secure Application Development Lifecycle improvement. 

Who You’ll Work With

When you join our team, you’ll partner closely with the Security and Incident Response Teams, and service practice organizations to apply both Cisco’s dynamic range of capabilities as well as those of our partner organizations to meet customer requirements and exceed their expectations. Partnering with account teams, you’ll drive the business pipeline and consult on services solutions, technologies, and pricing mechanics.

Who You Are

Perform whitebox (source-based) application security assessments 
Perform blackbox application security assessments 
Perform application security architecture and risk assessments 
Perform secure development lifecycle (SDL) process assessments 
Report to clients and assist in remediation of findings from assessments 
Develop application security standards and policy documentation 
Develop and lead of application security training 
Assist clients in developing of application security solutions 
Assist in sales, scoping, and marketing of application security engagements 
Development of consulting methodologies and process 

Required Qualifications 

Minimum of 7 years of professional experience in computer security or software development 
Experience researching, developing, and applying new technologies and methodologies 
Experience with cloud and virtualization environments 
Experience with mobile applications and devices 
Exceptional communication skills, both oral and written. 
Intermediate administration skills for Windows and/or Unix systems 
Intermediate TCP/IP networking knowledge (including networking architecture, firewall configuration, and DMZ layout) 
Advanced Web technology knowledge (i.e., HTTP, HTML, SQL) 
Advanced knowledge of the detection, exploit, and prevention of software vulnerabilities (i.e., SQL Injection, XSS, buffer overflows) 
Excellent self-tasking skills 
Professional certification strongly encouraged 
IoT, Vehicle Security Testing, Medical Device Testing, Cellular Network Testing 

Why Cisco

We connect everything: people, processes, data, and things. We innovate everywhere, taking bold risks to shape the technologies that give us smart cities, connected cars, and handheld hospitals. And we do it in style with unique personalities who aren’t afraid to change the way the world works, lives, plays and learns. We are thought leaders, tech geeks, pop culture aficionados, and we even have a few purple haired rock stars. We celebrate the creativity and diversity that fuels our innovation. We are dreamers and we are doers. 

We Are Cisco.