Operate a hands-on role involving penetration testing and vulnerability assessment activities of complex applications, operating systems, wired and wireless networks, and mobile applications/devices.
Develop and maintain security testing plans and automate penetration and other security testing on networks, systems and applications.
Conduct web and mobile application penetration tests.
Perform various types static and dynamic code reviews.
Conducting internal and external penetration tests of information systems using commercial and open source exploitation tools.
Conduct internal configuration and vulnerability assessments of information systems using both commercial and open source assessment tools.
Conduct wireless security assessments.
Engage in security research to remain current on vulnerabilities and testing tools.
Create detailed reports that clearly communicate vulnerabilities, mitigation strategies, and remediation steps.
Develop custom exploits and related tools in support of authorized penetration tests or cyber threat emulation exercises.
Perform other job-related functions as assigned.