Lead Engineer - Security Testing Services
- Employer
- Target
- Location
- Brooklyn Park, Minnesota
- Start date
- Jul 9, 2019
- Closing date
- Aug 7, 2019
View more
- Category
- Retail / Wholesale
- Employment Status
- Full Time
You need to sign in or create an account to save a job.
Description:
Job Description:
The core role of Security Testing Services is to provide Penetration Testing and Application Security Testing services to Target team members. The Penetration Testing Team is responsible for the automated and manual analysis of systems and applications in an effort to identify security flaws. The team proactively finds security vulnerabilities, test responses, and strengthens security offerings using coordinated simulated attacks against Target-owned systems and resources using pre-defined and approved tests. As a lead engineering, you will independently conduct pentests, and suggest improvements to the testing process. You will detect and exploit vulnerabilities manually, and develop tools and techniques to assist the team with improving skills and capabilities.
Preferred Experience:
3+ years experience, prefer 5 years, in the following:
Preference for formal education:
Generalist Certifications:
Specialist Certifications:
Desired Skills:
Intermediate to advanced scripting / development experience
Intermediate to advanced computing concepts such as application architecture and network segmentation.
Intermediate to advanced usage of security tools such as Kali Linux, Nmap / Nessus, Burp / ZAP, Wireshark / TCPDump
Deep understanding in at least one domain (Encryption/Encoding, Binary Exploitation, DB Injections (SQLi/noSQLi), File Includes (LFI/RFI), Deserialization attacks, OSINT methodology, Container breakouts, Wi-Fi attacks, Reverse engineering, IOT Hacking)
Excellent verbal and written communication skills to clearly communicate the implications and impacts of vulnerabilities
Experience with mentoring junior members, providing constructive, individualized feedback.
Americans with Disabilities Act (ADA)
Target will provide reasonable accommodations (such as a qualified sign language interpreter or other personal assistance) with the application process upon your request as required to comply with applicable laws. If you have a disability and require assistance in this application process, please visit your nearest Target store or Distribution Center or reach out to Guest Services at 1-800-440-0680 for additional information.
Qualifications:
Job Description:
The core role of Security Testing Services is to provide Penetration Testing and Application Security Testing services to Target team members. The Penetration Testing Team is responsible for the automated and manual analysis of systems and applications in an effort to identify security flaws. The team proactively finds security vulnerabilities, test responses, and strengthens security offerings using coordinated simulated attacks against Target-owned systems and resources using pre-defined and approved tests. As a lead engineering, you will independently conduct pentests, and suggest improvements to the testing process. You will detect and exploit vulnerabilities manually, and develop tools and techniques to assist the team with improving skills and capabilities.
Preferred Experience:
3+ years experience, prefer 5 years, in the following:
- Information Security roles (Pentest/Red Team/Incident Response/etc.)
- Preferably 3+ years experience in penetration testing
Preference for formal education:
- 2-4 years of college/vocational education in the field
- Formal training in the course of employment history
Generalist Certifications:
- CISSP, SANS certifications (GSEC/GCIH/GICSP/etc.)
Specialist Certifications:
- Offensive Security: OSCP/OSCE/etc.
- SANS: GPEN/GWAPT/GXPN/etc.
Desired Skills:
Intermediate to advanced scripting / development experience
- JavaScript, Golong, Python, C/C++, Ruby preferred
Intermediate to advanced computing concepts such as application architecture and network segmentation.
Intermediate to advanced usage of security tools such as Kali Linux, Nmap / Nessus, Burp / ZAP, Wireshark / TCPDump
Deep understanding in at least one domain (Encryption/Encoding, Binary Exploitation, DB Injections (SQLi/noSQLi), File Includes (LFI/RFI), Deserialization attacks, OSINT methodology, Container breakouts, Wi-Fi attacks, Reverse engineering, IOT Hacking)
Excellent verbal and written communication skills to clearly communicate the implications and impacts of vulnerabilities
Experience with mentoring junior members, providing constructive, individualized feedback.
Americans with Disabilities Act (ADA)
Target will provide reasonable accommodations (such as a qualified sign language interpreter or other personal assistance) with the application process upon your request as required to comply with applicable laws. If you have a disability and require assistance in this application process, please visit your nearest Target store or Distribution Center or reach out to Guest Services at 1-800-440-0680 for additional information.
Qualifications:
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalized job recommendations straight to your inbox.
Create alert