Job Description

Application Vulnerability Professional
Job Number: 20-02151
 
Grab the opportunity to achieve your full potential! Eclaro is looking for an Application Vulnerability Professional for our client in Charlotte, NC.

Eclaro’s client is one of the world's largest financial institutions, committed to providing the tools and services that bridge the gap between customers and their goals. If you’re up to the challenge, then take a chance at this rewarding opportunity!
 
Position Overview:
  • The candidate performs proactive ethical hacking assessments to identify application vulnerabilities and works closely with the application teams to remediate those findings.
  • The candidate will create best practice documents for socialization with Application and development teams.
  • Using state of the art tools, the candidate will perform both Automated and Manual Ethical Hacking and manage vulnerability findings resulting from their assessments.
  • They will be able to proactively analyze vulnerability trends by identifying gaps or relevant industry trends.
  • Solve problems analytically by applying a mixture of risk and technology expertise to perform impact assessments and identify root causes.
  • They will also provide quality assurance in real-time at the task level to provide feedback and training as needed.
 
Preferred Qualifications:
  • 5+ years of relevant work experience with some applied within financial services, risk or technology
  • 4 year college graduate
  • Ethical hacking certification
 
Required Experience:
  • Demonstrated and proven experience in one or more programming languages (like Java. .NET, Python etc.)
  • Professional ethical hacking experience using one or more of the following tools:
  • Burp Suite Pro Attack (Manual ethical hacking)
  • AppScan Enterprise tool (Automated ethical hacking)
  • SoapUI (Web Services)
  • Fortify or Checkmarx (Self-Service Source Code scanning tools)
  • Experience communicating application security issues to wide range of audiences (including both technical and non-technical)
 
Preferred Experience:
  • Prior experience in application development (including Mobile) and SDLC processes
  • Prior experience in application security standards & best practices, assessment methodologies, secure coding practices
 
Required Skills:
  • Ability to conduct web application ethical hacking in accordance with a defined process using attack proxies and scripting tools
  • Solid understanding of network protocols
  • Demonstrated increasing levels of accountability and ownership
  • Demonstrated ability to operate as a change agent and driving change across diverse stakeholders groups
  • Strong collaboration and partnering skills with ability to positively influence and motivate teams
  • Comfortable with ambiguous situations capable of analyzing, simplifying and collaborating to solve complex problems
  • Strategic thinkers, self-starter, organized, versatile, and capable of performing work with minimal management oversight
  • Ability to connect dots and not work in a silo, understanding the impacts of the work that is done and how it can tie into other areas within the team and across Client
 
If interested, you may contact:
Adrian Miranda
Adrian.Miranda@eclaro.com
212-804-7468
Adrian Miranda | LinkedIn
 
Equal Opportunity Employer:
Eclaro values diversity and does not discriminate based on Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.
 

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!

Apply Online