Senior Security Specialist
Sportradar Media Services GmbH
Wien
vor 4 Tg.
source : devjobs.at

Technologien und Skills

Deine Rolle im Team

  • Providing guidance to junior team members within the field of expertise
  • Providing professional analysis and reporting of findings to internal units and leadership team
  • Supporting the Information Security Audit Team and other internal units during technical security assessments
  • Interacting with the Technical Leads to provide excellent support via pre-assessment meetings, support during security engagements and coordination of security mitigation plans after externalsecurity assessments
  • Interacting with technical product owners and leads to support a smooth audit experience via pre-assessment meetings, support during engagements and coordination of security mitigation plans after external security assessments
  • Unsere Erwartungen an dich

    Qualifikationen

  • Demonstrable skills using the following tools : Burp Suite, OWASP ZAP, SoapUI, Kali Linux (Metasploit, nmap, sqlmap, dirbuster, nikto, etc.),
  • Demonstrable knowledge of application and IT infrastructure security best practices including the following methodologies : OWASP Testing Guide, OSTMM, PTES, NIST
  • Knowledge regarding Linux / Unix and Windows configuration reviews in accordance to the CIS benchmark or another well-known requirements
  • Proficiency in one or more scripting languages e.g. Powershell, Python, Perl
  • Excellent understanding of threat modelling and SDLC / SSDLC processes
  • Ability to communicate with all levels within an organization with appropriate technical content
  • Fluent English and German skills on C1 level
  • One of the following certifications : OSCP, OSWE, GPEN, GXPN, eWPT, eWPTX, CREST CWAT, CSSLP
  • Demonstrable skills on any the following software SATST / DAST tools : IBM AppScan, Checkmarx, Echo Mirage, Javasnoop, Acunetix, Fortify, SonarQube
  • High level knowledge of cryptography concepts
  • Erfahrung

  • At least 3 years of professional experience in the consulting area (as an auditor, penetration tester, security engineer, etc.
  • or 4 years of professional experience in an internal team (e.g. DevOps, IT Security, Information Security, Security Operation Center)

  • Experienced in creating reports for the management and external entities
  • Experience with performing manual and automated penetration tests of web applications, mobile applications, thick client applications and IT infrastructure
  • Experience performing security source code review (SAST, DAST
  • Experience in security testing and performing security assessments of cloud services
  • CTF experience
  • Melde diesen Job
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Bewerben
    E-Mail
    Klicke auf "Fortfahren", um unseren Datenschutz-und Nutzungsbestimmungen zuzustimmen . Du kriegst außerdem die besten Jobs als E-Mail-Alert. Los geht's!
    Fortfahren
    Bewerbungsformular