Senior Security Consultant (Mainframe Penetration Tester)
Indexed description
NetSPI is on an exciting growth journey as we disrupt and improve the proactive security market. We are looking for individuals with a collaborative, innovative, and customer-first mindset to join our team. Learn more about our award-winning workplace culture and get to know our A-Team at www.netspi.com/careers.
Join the mission as a Senior Security Consultant. We are seeking a skilled and detail-oriented Penetration Tester to conduct thorough security assessments, identify vulnerabilities, and provide expert recommendations to strengthen our clients' security posture. As a Penetration Tester supporting Mainframe testing, you will work closely with clients to deliver clear, actionable reports and contribute to the development of security best practices.
Responsibilities
- Perform network, app, platform, CICS, IMS, Db2 and other z/OS-based penetration tests.
- Create and deliver penetration test reports to clients
- Collaborate with clients to create remediation strategies that will help improve their security posture
- Research and develop innovative techniques, tools, and methodologies for penetration testing services
- Participate in the ongoing development/enhancement of NetSPI services and processes, in addition to thought leadership (via blogs, presentations, white papers, webinars, podcast, vlogs and tweets)
- Provide pre-sales support by assisting with scoping prospective engagements
- Act as a resource for internal team members as it relates to in-depth technical questions or best practices
- Responsible for QA activities in assigned service lines
- Other duties as assigned
- Bachelor’s degree or higher, with a focus on IT, Computer Science, Engineering or Math or equivalent experience
- 3-5 years of experience in penetration testing, including network, web or thick client application, and operating system testing
- Experience with offensive toolkits used for network and application penetration testing
- Strong communication skills, both verbal and written
- Knowledge of z/OS fundamentals including, but not limited to: TSO, JCL, JES2, USS, Networking and at least one ESM (RACF, ACF2, Top Secret).
- Programming experience in one or more of the following languages: Assembler, C, C++, REXX, Python
- Experience security or managing z/OS-based systems.
- Experience with pentesting (PTAS), PTES, OSCP or other offensive security certifications.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search